*0day (some hours ago)*
Guys, a serious security flaw has just been discovered.
The xz library has been infected with a backdoor directly from the upstream.
SSH servers may be compromised since SSH uses the xz/liblzma. The backdoor is present in versions 5.6.0 and 5.6.1 of the library.
Offsec has just published that the backdoor affects Kali Linux from March 26th until today, and it is crucial to update the package.
Interestingly, the backdoor was discovered by a Microsoft engineer.
https://infosec.exchange/@kalilinux/112180505434870941
Rafael Grether (devnull) /
npub1a3…7q6mz
2024-03-29 20:14:50
Author Public Key
npub1a3zdqytzxu9mw3wwl8887nluc3jm28m6u9jqmaxl6atwsmq6m9csl7q6mzSeen on
wss://relay.noswhere.comPublished at
2024-03-29 20:14:50Event JSON
{
"id": "0dd8d8f11361d8b590ee2b40af8a1f8a0093efc1e8e6da73fc0f27f468b0a1e6",
"pubkey": "ec44d01162370bb745cef9ce7f4ffcc465b51f7ae1640df4dfd756e86c1ad971",
"created_at": 1711743290,
"kind": 1,
"tags": [
[
"proxy",
"https://mastodon.bsd.cafe/users/devnull/statuses/112180808315640074",
"activitypub"
]
],
"content": "*0day (some hours ago)*\n\nGuys, a serious security flaw has just been discovered.\n\nThe xz library has been infected with a backdoor directly from the upstream.\n\nSSH servers may be compromised since SSH uses the xz/liblzma. The backdoor is present in versions 5.6.0 and 5.6.1 of the library.\n\nOffsec has just published that the backdoor affects Kali Linux from March 26th until today, and it is crucial to update the package.\n\nInterestingly, the backdoor was discovered by a Microsoft engineer.\n\nhttps://infosec.exchange/@kalilinux/112180505434870941",
"sig": "6f2c50a229335f12cfed87c5b53d0261b8fe6227a04ae94e7da51c87eb19c41b9e32981d4dce2feefb11bf49be82b1ef33719998e32f657d0dcac88a6701992b"
}