Gorb [they/them] to technology • edit-26 months agoliblzma and xz version 5.6.0 and 5.6.1 are vulnerable to arbitrary code execution compromise via sshd and systemdexternal-linkmessage-square3 fedilinkarrow-up127
arrow-up127external-linkliblzma and xz version 5.6.0 and 5.6.1 are vulnerable to arbitrary code execution compromise via sshd and systemdGorb [they/them] to technology • edit-26 months agomessage-square3 Commentsfedilink
minus-squaretrompete [he/him]hexbear5·6 months agoPerhaps worth mentioning: Some unknown person added malware to their tarball releases, specifically to backdoor ssh, which on most Linux distros was patched to load some systemd library, which in turn loads liblzma. link
Perhaps worth mentioning: Some unknown person added malware to their tarball releases, specifically to backdoor ssh, which on most Linux distros was patched to load some systemd library, which in turn loads liblzma.