Tag

CVE-2024-3094

1 views collected around this technical thread.

Java Tech Enthusiast

Apr 10, 2024 · Information Security

Backdoor Discovered in xz-utils for Fedora 40 and Rawhide

Red Hat’s emergency advisory (CVE‑2024‑3094) warns that malicious code was inserted into xz‑utils 5.6.0/5.6.1, creating a remote‑access backdoor that affects only Fedora 41 and Rawhide, traced to attacker JiaT75 who compromised the Tukaani project for three years before GitHub disabled the repository.

CVE-2024-3094Fedorabackdoor

0 likes · 4 min read

Backdoor Discovered in xz-utils for Fedora 40 and Rawhide

IT Services Circle

Apr 2, 2024 · Information Security

Malicious Code Discovered in xz 5.6.0/5.6.1 Packages Affecting Fedora 40 and Rawhide (CVE‑2024‑3094)

Red Hat's urgent security advisory reveals that the latest xz 5.6.0/5.6.1 tools and libraries contain sophisticated malicious code that can grant unauthorized remote access, impacting Fedora 40, Fedora 41, and Rawhide while leaving all RHEL versions unaffected.

CVE-2024-3094FedoraGitHub

0 likes · 5 min read

Malicious Code Discovered in xz 5.6.0/5.6.1 Packages Affecting Fedora 40 and Rawhide (CVE‑2024‑3094)