Off-Topic :
K-Meleon Web Browser Forum
Hello Folks.
There's been an enormous uproar about the xz backdoor - which of course is a concern for Linux users like myself.
Panzer was kind enough to share a link for a detector:
https://xz.fail
Looking around at a whole bunch of things posted about it, none of what I found mentions specific filenames that it aims to infect.
Over at Virustotal there is mention of liblzma.so & variations of it - but my PC doesn't seem to have any of those.
This all leaves me with unanswered questions, such as:
- Does this threat aim at specific OSes and/or versions of them ??
- Is this threat aimed only at OSes, or also at applications ??
- Are there specific applications which include such files ??
- Where might be found a list of the specific ELF files it aims to infect ??
Hopefully there is some specific info about this topic as endless, non-specific articles are a waste of time IMO.
Thanks for reading.
As any vulnerability is more the concern than the actual impact to the average user:
https://thehackernews.com/2024/03/urgent-secret-backdoor-found-in-xz.html
Anyway, the recommendation is just to downgrade the XZ utils package.
There you have several links to info.
Also, read the mailing list of your distro.
Edited 3 time(s). Last edit at 04/05/2024 01:43AM by JohnHell.
Thanks very much for replying JohnHell.
From the XZ Utils site:
Source:
https://tukaani.org/xz-backdoor/
The version on my PC is 5.2.2-1
The article you recommended reveals this info:
Thanks Again.
All which isn't K-Meleon related.
XZ backdoor - lack of usable info
Posted by:
smallhagrid
Date: April 04, 2024 09:50PM
Hello Folks.
There's been an enormous uproar about the xz backdoor - which of course is a concern for Linux users like myself.
Panzer was kind enough to share a link for a detector:
https://xz.fail
Looking around at a whole bunch of things posted about it, none of what I found mentions specific filenames that it aims to infect.
Over at Virustotal there is mention of liblzma.so & variations of it - but my PC doesn't seem to have any of those.
This all leaves me with unanswered questions, such as:
- Does this threat aim at specific OSes and/or versions of them ??
- Is this threat aimed only at OSes, or also at applications ??
- Are there specific applications which include such files ??
- Where might be found a list of the specific ELF files it aims to infect ??
Hopefully there is some specific info about this topic as endless, non-specific articles are a waste of time IMO.
Thanks for reading.
Re: XZ backdoor - lack of usable info
Posted by:
JohnHell
Date: April 05, 2024 01:41AM
As any vulnerability is more the concern than the actual impact to the average user:
https://thehackernews.com/2024/03/urgent-secret-backdoor-found-in-xz.html
Anyway, the recommendation is just to downgrade the XZ utils package.
There you have several links to info.
Also, read the mailing list of your distro.
Edited 3 time(s). Last edit at 04/05/2024 01:43AM by JohnHell.
Re: XZ backdoor - lack of usable info
Posted by:
smallhagrid
Date: April 05, 2024 03:15AM
Thanks very much for replying JohnHell.
From the XZ Utils site:
Quote
XZ Utils 5.6.0 and 5.6.1 release tarballs contain a backdoor. These tarballs were created and signed by Jia Tan.
Source:
https://tukaani.org/xz-backdoor/
The version on my PC is 5.2.2-1
The article you recommended reveals this info:
Quote
Evidence shows that the packages are only present in Fedora 41 and Fedora Rawhide, and do not impact distros like Alpine Linux, Amazon Linux, Debian Stable, Gentoo Linux, Linux Mint, Red Hat Enterprise Linux (RHEL), SUSE Linux Enterprise and Leap, and Ubuntu.
Thanks Again.
English