Hacker News new | past | comments | ask | show | jobs | submit login
7-Zip developer releases the first official Linux version (bleepingcomputer.com)
154 points by thunderbong 57 days ago | hide | past | favorite | 7 comments

Previously (link to upstream announcement): https://news.ycombinator.com/item?id=26426816

No simultaneous source release, a call for users to run Linux benchmarks, and a mysterious tweet about 7Zip source code quality.

It isn't that mysterious.

p7zip has a number of known bugs easily found by fuzzing, as it hasn't seen updates for years. 7-zip in general is a tool that is written in C and supports lots of complex binary formats and thus has a huge attack surface for memory corruption bugs.

This is all pretty obvious with some basic knowledge of how these things work.

Thanks for clarifying, the original tweet has also been expanded innl the same vein: https://mobile.twitter.com/AdmVonSchneider/status/1369300173...

And a bit off-topic, but have you heard of (or maybe commented on) "Bring macOS Quick Look Feature to Windows"[0] aka "parse and preview everything"? Is it paranoia[1] to think "how we defend against parser exploits" should be part of the tool design?

[0] https://github.com/QL-Win/QuickLook

[1] https://news.ycombinator.com/item?id=26007577

The developer has already clarified that the source will be released and open sourced under GNU LGPL - https://sourceforge.net/p/sevenzip/discussion/45797/thread/c...

A command line 7z compatible archiver has been available for Linux for a long time: http://p7zip.sourceforge.net

If all you care about is LZMA compression lzip is your best choice, which has a much more rational container than xz. https://www.nongnu.org/lzip/

please RTFA before commenting, it goes into detail as to why one might not want to use p7zip

It literally mentions p7zip on the article and talks about why that isnt a good choice.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact