Atemu@lemmy.ml to Linux@lemmy.ml · 8 months agobackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comexternal-linkmessage-square100fedilinkarrow-up1527arrow-down15cross-posted to: selfhosted@lemmy.worldlinux@lemmy.worldnetsec@lemmy.worldprogramming@programming.devcybersecurity@sh.itjust.workshackernews@lemmy.smeargle.fanssecurity@lemmy.ml
arrow-up1522arrow-down1external-linkbackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comAtemu@lemmy.ml to Linux@lemmy.ml · 8 months agomessage-square100fedilinkcross-posted to: selfhosted@lemmy.worldlinux@lemmy.worldnetsec@lemmy.worldprogramming@programming.devcybersecurity@sh.itjust.workshackernews@lemmy.smeargle.fanssecurity@lemmy.ml
minus-squareStatic_Rocket@lemmy.worldlinkfedilinkEnglisharrow-up12·edit-28 months agoPart of the payload was in the tarball. There was still a malicious shim in the upstream repo
Part of the payload was in the tarball. There was still a malicious shim in the upstream repo