CVE-2024-3094 | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		aaronmdjones on March 30, 2024 \| parent \| context \| favorite \| on: XZ backdoor: "It's RCE, not auth bypass, and gated... CVE-2024-3094

chr-s on March 31, 2024 [–]

"Backdoor in upstream xz/liblzma leading to ssh server compromise"[0] isn't bad either.

[0]https://www.openwall.com/lists/oss-security/2024/03/29/4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact