Security alert: XZ Linux utility backdoor

Researchers discovered a supply-chain backdoor in the XZ compression utility (versions 5.6.0 and 5.6.1) introduced by a maintainer, which grants anyone possessing the embedded public key the ability to execute commands as root; affected systems should be identified and downgraded to XZ 5.4.6 or earlier and replaced binaries to remove the backdoor.