https://nvd.nist.gov/vuln/detail/CVE-2024-3094
Pretty sure UTM is not vulnerable due to older versions of the liblzma, but a statement from an Sophos official would be nice to satisfy our security people.
This thread was automatically locked due to age.