https://gcc.gnu.org/bugzilla/show_bug.cgi?id=114115
--- Comment #9 from Chung-Ju Wu <jasonwucj at gcc dot gnu.org> --- (In reply to Sam James from comment #1) > One of the xz developers, Jia Tan, has kindly minimised it to not need > BIND_NOW. I've adapted it a bit to cleanup flags and warnings. > CVE-2024-3094 Jia Tan is the one who injected backdoor in xz-5.6.0 and xz-5.6.1, which may be the cause of the segfaults. I'm wondering if we still need a workaround for this issue...
