|
|
|
|
|
|
by csande17
771 days ago
|
|
|
The malicious build script included heuristics to only include the backdoor if you were building a .deb or .rpm package (the Debian and Fedora formats respectively). Other distros would have been affected if they used the same packaging setup -- Ubuntu also uses .deb, for example, because it's based on Debian. And some distros IIRC considered themselves "affected" if they ever used a malicious version of the code, just in case, even if the backdoor didn't actually get compiled in to their version. |
|
|
It's true that Red Hat now owns Fedora, but the adoption went the other way around.
[0] https://en.wikipedia.org/wiki/RPM_Package_Manager