Re: Malware find in the news: xz related.

Liste des GroupesRevenir à col misc 
Sujet : Re: Malware find in the news: xz related.
De : * (at) *nospam* eli.users.panix.com (Eli the Bearded)
Groupes : comp.os.linux.misc
Date : 30. Mar 2024, 04:54:42
Autres entêtes
Organisation : Some absurd concept
Message-ID : <eli$2403292354@qaz.wtf>
References : 1
User-Agent : Vectrex rn 2.1 (beta)
In comp.os.linux.misc, pH  <wNOSPAMp@gmail.org> wrote:
I just saw this while looking through a news feed.
 
https://www.helpnetsecurity.com/2024/03/29/cve-2024-3094-linux-backdoor/
 
I have not read the entire article yet, but it has been said
to have been
found accidentally.

The initial report is quite readable:

https://www.openwall.com/lists/oss-security/2024/03/29/4

Found because someone was trying to benchmark something else and ssh was
using noticable cpu. An exploit hidden by a multi-year contributor who
got promoted to maintainer. The exploit is hidden in a "bad" xz
compessed "test" file, a simple use of `tr` repairing the file. Today's
exploit specifically targets sshd on Debian, but there's no reason to
think that this was a final target instead of a first target.

Elijah
------
Easter weekend security scamble

Date Sujet#  Auteur
30 Mar 24 * Malware find in the news: xz related.59pH
30 Mar 24 +- Re: Malware find in the news: xz related.1Woozy Song
30 Mar 24 +* Re: Malware find in the news: xz related.2Eli the Bearded
31 Mar 24 i`- Re: Malware find in the news: xz related.1Computer Nerd Kev
31 Mar 24 +* Re: Malware find in the news: xz related.25MarioCCCP
31 Mar 24 i`* Re: Malware find in the news: xz related.24Computer Nerd Kev
31 Mar 24 i `* Re: Malware find in the news: xz related.23Computer Nerd Kev
31 Mar 24 i  +* Re: Malware find in the news: xz related.16D
31 Mar 24 i  i`* Re: Malware find in the news: xz related.15Lew Pitcher
31 Mar 24 i  i +* Re: Malware find in the news: xz related.12Nuno Silva
31 Mar 24 i  i i+- Re: Malware find in the news: xz related.1Lew Pitcher
31 Mar 24 i  i i+- Re: Malware find in the news: xz related.1Rich
31 Mar 24 i  i i`* Re: Malware find in the news: xz related.9Richard Kettlewell
1 Apr 24 i  i i `* Re: Malware find in the news: xz related.8Carlos E.R.
1 Apr 24 i  i i  `* Re: Malware find in the news: xz related.7Rich
2 Apr 24 i  i i   `* Re: Malware find in the news: xz related.6Carlos E.R.
6 Apr 24 i  i i    `* Re: Malware find in the news: xz related.5MarioCCCP
6 Apr 24 i  i i     `* Re: Malware find in the news: xz related.4Rich
6 Apr 24 i  i i      `* Re: Malware find in the news: xz related.3The Natural Philosopher
7 Apr 24 i  i i       +- Re: Malware find in the news: xz related.1Computer Nerd Kev
8 Apr 24 i  i i       `- Re: Malware find in the news: xz related.1Rich
31 Mar 24 i  i +- Re: Malware find in the news: xz related.1D
6 Apr 24 i  i `- Re: Malware find in the news: xz related.1Popping Mad
31 Mar 24 i  +- Re: Malware find in the news: xz related.1Woozy Song
31 Mar 24 i  `* Re: Malware find in the news: xz related.5Carlos E.R.
31 Mar 24 i   +- Re: Malware find in the news: xz related.1David W. Hodgins
31 Mar 24 i   `* Re: Malware find in the news: xz related.3D
31 Mar 24 i    `* Re: Malware find in the news: xz related.2Carlos E.R.
1 Apr 24 i     `- Re: Malware find in the news: xz related.1D
31 Mar 24 `* Re: Malware find in the news: xz related.30John McCue
31 Mar 24  `* Re: Malware find in the news: xz related.29Grant Taylor
31 Mar 24   +* Re: Malware find in the news: xz related.11David W. Hodgins
31 Mar 24   i+* Re: Malware find in the news: xz related.8Rich
31 Mar 24   ii`* Re: Malware find in the news: xz related.7David W. Hodgins
31 Mar 24   ii `* Re: Malware find in the news: xz related.6Lew Pitcher
31 Mar 24   ii  `* Re: Malware find in the news: xz related.5Marco Moock
31 Mar 24   ii   `* Re: Malware find in the news: xz related.4Grant Taylor
31 Mar 24   ii    +- Re: Malware find in the news: xz related.1David W. Hodgins
1 Apr 24   ii    `* Re: Malware find in the news: xz related.2Marco Moock
1 Apr 24   ii     `- Re: Malware find in the news: xz related.1Grant Taylor
31 Mar 24   i`* Re: Malware find in the news: xz related.2Grant Taylor
31 Mar 24   i `- Re: Malware find in the news: xz related.1Marc Haber
31 Mar 24   `* Re: Malware find in the news: xz related.17Rich
31 Mar 24    +* Re: Malware find in the news: xz related.4David W. Hodgins
31 Mar 24    i+* Re: Malware find in the news: xz related.2Grant Taylor
31 Mar 24    ii`- Re: Malware find in the news: xz related.1Richard Kettlewell
31 Mar 24    i`- Re: Malware find in the news: xz related.1D
31 Mar 24    +* Re: Malware find in the news: xz related.7Carlos E.R.
31 Mar 24    i`* Re: Malware find in the news: xz related.6D
31 Mar 24    i +* Re: Malware find in the news: xz related.4Carlos E.R.
31 Mar 24    i i`* Re: Malware find in the news: xz related.3Computer Nerd Kev
1 Apr 24    i i +- Re: Malware find in the news: xz related.1candycanearter07
1 Apr 24    i i `- Re: Malware find in the news: xz related.1John Dallman
6 Apr 24    i `- Re: Malware find in the news: xz related.1Popping Mad
31 Mar 24    `* Re: Malware find in the news: xz related.5Grant Taylor
1 Apr 24     +- Re: Malware find in the news: xz related.1Rich
1 Apr 24     `* Re: Malware find in the news: xz related.3Marco Moock
7 Apr 24      `* Re: Malware find in the news: xz related.2Carlos E.R.
7 Apr 24       `- Re: Malware find in the news: xz related.1John Dallman

Haut de la page

Les messages affichés proviennent d'usenet.

NewsPortal