Porteus

Porteus User Forum
https://forum.porteus.org/

CVE-2024-3094 on XZ - bacdoor - supply chain backdoor SOLVED on SLACKWARE

https://forum.porteus.org/viewtopic.php?f=117&t=11283

Page 1 of 1

CVE-2024-3094 on XZ - bacdoor - supply chain backdoor SOLVED on SLACKWARE

Posted: 30 Mar 2024, 13:57
by maia
I don't know if this is the best place to address this issue, but a 10.0 critical vulnerability was identified in the xz tarballs of xz package, starting with version 5.6.0. Although the version currently used in porteus is 5.25, I believe it is prudent to apply the suggested corrections.

https://nvd.nist.gov/vuln/detail/CVE-2024-3094
https://access.redhat.com/security/cve/CVE-2024-3094

:( =@

CVE-2024-3094 on XZ - bacdoor - supply chain backdoor

Posted: 30 Mar 2024, 15:58
by Ed_P
Thank you.

CVE-2024-3094 - backdoor found in xz utils 5.6.0 and 5.6.1
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/