Explore >> Select a destination

You are here

 hardenedvault.net
xz/liblzma Backdoor: Open Source Nuke? Maybe Not That Bad!
| | snyk.io
The XZ backdoor CVE-2024-3094 | Snyk
1.0 parsecs away

Travel
| | On the 29th of March 2024, the high-stakes investment and prolonged campaign to plant a backdoor in the Linux software library liblzma to gain access to multiple operating systems via Linux distributions was carried out by a malicious actor.
| | openssf.org
xz Backdoor CVE-2024-3094 - Open Source Security Foundation
0.8 parsecs away

Travel
| | [AI summary] A backdoor vulnerability (CVE-2024-3094) was discovered in the xz package, allowing potential remote system compromise through compromised software supply chain practices.
| | www.sonatype.com
CVE-2024-3094 The targeted backdoor supply chain attack against XZ and liblzma
1.1 parsecs away

Travel
| | Learn about a new, targeted backdoor supply chain attack against the popular XZ compression utility seen in many Linux distributions such as fedora and debian. Understand its impact, potential risks and what you can do about it.
| | vpetersson.com
DSLF - a rust hacking, cheaper hosting, and two HTTP codes I didn't know about
10.8 parsecs away

Travel
| Insights on DevSecOps, cloud architecture, and building secure, scalable systems. Sharing practical experience from running tech companies and implementing software supply chain security at scale.