oss-security - backdoor in upstream xz/liblzma leading to ssh server compromise
(openwall.com)
from kbal@fedia.io to cybersecurity@infosec.pub on 29 Mar 2024 17:16
https://fedia.io/m/cybersecurity@infosec.pub/t/663890
from kbal@fedia.io to cybersecurity@infosec.pub on 29 Mar 2024 17:16
https://fedia.io/m/cybersecurity@infosec.pub/t/663890
The upstream xz repository and the xz tarballs have been backdoored.
#cybersecurity
threaded - newest
.
That’s wild.