Package Details: mingw-w64-xz 5.6.1-1

Git Clone URL: (read-only, click to copy)
Package Base: mingw-w64-xz
Description: Library and command line tools for XZ and LZMA compressed files (mingw-w64)
Upstream URL:
Keywords: mingw-w64 xz
Licenses: GPL, custom, LGPL
Submitter: Schala
Maintainer: pingplug
Last Packager: pingplug
Votes: 13
Popularity: 0.000113
First Submitted: 2012-08-06 08:05 (UTC)
Last Updated: 2024-04-05 00:36 (UTC)

Latest Comments

1 2 Next › Last »

MonkeeSage commented on 2024-04-03 08:09 (UTC)

This package does not build because Github has suspended the upstream repository because this package has a backdoor.

This package should be updated to follow the main arch xz package and build from git checkout and remove Jia Tan's key.


Martchus commented on 2024-03-29 21:32 (UTC) (edited on 2024-03-29 21:32 (UTC) by Martchus)

When updating, please change the sources in accordance with to avoid the recently disclosed security problem.

Martchus commented on 2024-02-08 15:54 (UTC)

Probably it makes most sense to change the source URL to be in-line with

patlefort commented on 2024-02-07 16:24 (UTC)

Signature also fails to be verified. Sources from github are fine, maybe he forgot to update it on his site?

patlefort commented on 2024-02-07 15:55 (UTC)

Source checksum does not pass.

syyyr commented on 2024-02-07 09:47 (UTC) (edited on 2024-02-07 09:50 (UTC) by syyyr)

It seems that new releases are now found on github. The current source gives 404.

diff --git a/PKGBUILD b/PKGBUILD
index 5573b38..63d8027 100644
@@ -9,12 +9,12 @@ pkgver=5.4.6
 pkgdesc="Library and command line tools for XZ and LZMA compressed files (mingw-w64)"
 license=('custom' 'GPL' 'LGPL')
 options=('!strip' 'staticlibs' '!buildflags')
 validpgpkeys=('22D465F2B4C173803B20C6DE59FCF207FEA7F445') # Jia Tan <>