Saturday, 30 March 2024

Everything I know about the XZ backdoor

quote [ jesus, I hope you like beer cuz we owe you a free lifetime supply. ]

This is all over the internet by now: a social-engineered backdoor inside SSH servers, being repacked inside Linux distros and only noticed by accident yesterday. Quote is Mastodon, thumb xkcd – some more info on LWN and a lengthy FAQ.
[SFW] [science & technology] [+4 Informative]
[by Paracetamol@12:36pmGMT]

Comments

Paracetamol said @ 2:32pm GMT on 30th Mar
sorry, the Mastodon link was wrong, here's the correct one:

AndresFreundTec (@AndresFreundTec@mastodon.social)


I accidentally found a security issue while benchmarking postgres changes. If you run debian testing, unstable or some other more "bleeding edge" distribution, I strongly recommend upgrading ASAP. https://www.openwall.com/lists/oss-security/2024/03/29/4
damnit said @ 8:22pm GMT on 30th Mar
It has to be Jian Tan.

Post a comment
[note: if you are replying to a specific comment, then click the reply link on that comment instead]

You must be logged in to comment on posts.
home | about | subscribe | search | help not logged in | log in / register


Posts of Import
Karma
SE v2 Closed BETA
First Post
Subscriptions and Things

Karma Rankings
ScoobySnacks
HoZay
Paracetamol
lilmookieesquire
Ankylosaur