T
tntr
@eyenx.ch
opensource / devops / ultrarunning / cats
blog: eyenx.ch
mstdn: eyenx@mastodon.social
95 followers119 following77 posts
Check your systems for #xz#cve20243094github.com/robertdebock...
Reposted by tntr
Yeah ok this was 100% found by sheer luck. mastodon.social/@AndresFreun...bsky.app/profile/look...
Reposted by tntr
I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission. The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system(). It's RCE, not auth bypass, and gated/unreplayable.
Reposted by tntr
T
tntr
@eyenx.ch
opensource / devops / ultrarunning / cats
blog: eyenx.ch
mstdn: eyenx@mastodon.social
95 followers119 following77 posts