]> Sergey Matveev's repositories - stargrave-blog.git/commit
projects / stargrave-blog.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 67c5880) | patch
Backdoor в XZ
authorSergey Matveev <stargrave@stargrave.org>
Sat, 30 Mar 2024 06:21:08 +0000 (09:21 +0300)
committerSergey Matveev <stargrave@stargrave.org>
Sat, 30 Mar 2024 06:27:43 +0000 (09:27 +0300)
commitd4e57f813901e3a4ba41212ac057475780f40aaa
tree4b825dc642cb6eb9a060e54bf8d69288fbee4904tree
parent67c58801e7f5cd763f98639317494484493e4774commit | diff
Backdoor в XZ

https://dataswamp.org/~solene/2024-03-30-lessons-learned-xz-vuln.html
https://www.opennet.ru/opennews/art.shtml?num=60877
https://www.openwall.com/lists/oss-security/2024/03/29/4
https://www.linux.org.ru/news/security/17567724
https://lwn.net/Articles/967180/
В tarball-ах новых версий XZ был сделан backdoor. Касается это правда
только систем с systemd, где OpenSSH собран с патчем для systemd.
Blog