Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

[solved] CVE-2024-3094 (xz backdoor): security measurements
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
jpsollie
Apprentice
Apprentice


Joined: 17 Aug 2013
Posts: 291
PostPosted: Sun Apr 07, 2024 4:01 am    Post subject: [solved] CVE-2024-3094 (xz backdoor): security measurements Reply with quote
Hello everyone,

My laptop/desktop/NAS have been using the xz-utils 5.6.0 package right from the start.
As such, they were potentially affected.
When this CVE was published, I immediately downgraded XZ, but:

1. Does it affect openssh binaries compiled with XZ as well? or only at runtime?
the idea is: let's assume I compiled a gentoo package for amd devices when xz 5.6.0 was being used,
will installing that precompiled binary automatically install the backdoor as well?

2. How can I activate the kill switch?
I read here: https://piaille.fr/@zeno/112185928685603910 that the following kill switch exists:

Code:

yolAbejyiejuvnup=Evjtgvsh5okmkAvj


would putting this in /etc/profile be enough to make sure the kill switch is always trigged (and thus the malicious code never executed)?
_________________
The power of Gentoo optimization (not overclocked): [img]https://www.passmark.com/baselines/V10/images/503714802842.png[/img]

Last edited by jpsollie on Sun Apr 07, 2024 4:34 am; edited 1 time in total
Back to top
View user's profile Send private message
pjp
Administrator
Administrator


Joined: 16 Apr 2002
Posts: 20067
PostPosted: Sun Apr 07, 2024 4:06 am    Post subject: Reply with quote
XZ utils: Backdoor in release tarballs — GLSA 202403-04

General discussion:
The xz package has been backdoored
_________________
Quis separabit? Quo animo?
Back to top
View user's profile Send private message
jpsollie
Apprentice
Apprentice


Joined: 17 Aug 2013
Posts: 291
PostPosted: Sun Apr 07, 2024 4:33 am    Post subject: Reply with quote
all right, I'll close the topic here and ask in general discussion, thanks!
_________________
The power of Gentoo optimization (not overclocked): [img]https://www.passmark.com/baselines/V10/images/503714802842.png[/img]
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy