"Warning: XZ Utils Backdoor Threatens Linux Security"

March 30, 2024 at 05:23 AM

•

1 min read

"Warning: XZ Utils Backdoor Threatens Linux Security" — Photo: The Hacker News

TL;DR Summary

RedHat issued an urgent security alert after discovering a backdoor in XZ Utils versions 5.6.0 and 5.6.1, impacting major Linux distributions. The malicious code, with a maximum severity CVSS score, allows unauthorized remote access and interferes with the sshd daemon process. The compromised packages are present in Fedora 41 and Fedora Rawhide, prompting recommendations for users to downgrade to a safe version. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has advised users to downgrade XZ Utils to an uncompromised version.

Topics:technology #cybersecurity #linux #redhat #supply-chain-attack #technologysecurity #xz-utils

Share this article

Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros The Hacker News
Backdoor found in widely used Linux utility breaks encrypted SSH connections Ars Technica
Malicious SSH backdoor sneaks into xz, Linux world's data compression library The Register
Red Hat, CISA Warn of XZ Utils Backdoor Duo Security
Are You Affected by the Backdoor in XZ Utils? Dark Reading

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

82%

457 → 81 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights