Atemu@lemmy.ml to Linux@lemmy.ml · 1 年前backdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comexternal-linkmessage-square98fedilinkarrow-up1514arrow-down15cross-posted to: [email protected][email protected][email protected][email protected][email protected][email protected][email protected]
arrow-up1509arrow-down1external-linkbackdoor in upstream xz/liblzma leading to ssh server compromisewww.openwall.comAtemu@lemmy.ml to Linux@lemmy.ml · 1 年前message-square98fedilinkcross-posted to: [email protected][email protected][email protected][email protected][email protected][email protected][email protected]
minus-squarefriend_of_satan@lemmy.worldlinkfedilinkEnglisharrow-up17arrow-down3·1 年前The back door is not in the source code though, so it’s not reproducible from source.
minus-squareStatic_Rocket@lemmy.worldlinkfedilinkEnglisharrow-up12·edit-21 年前Part of the payload was in the tarball. There was still a malicious shim in the upstream repo
The back door is not in the source code though, so it’s not reproducible from source.
Part of the payload was in the tarball. There was still a malicious shim in the upstream repo