AuthorTAFA Archives
April 2024
Categories
All
|
Back to Blog
Security researchers, Red Hat, warned users that the latest versions of the “xz” tools and libraries in Linux distributions contain malicious code that appears to allow unauthorised access and gain remote access to the entire system.
This vulnerability is tracked as CVE-2024-3094, and has been scored a 10 out of 10 on the Common Vulnerability Scoring System (CVSSv3). Specifically, this critical vulnerability is present in XZ versions 5.6.0 and 5.6.1. Users who use these versions are highly advised to immediately downgrade to older versions that do not contain the malicious code. Red Hat has warned users to immediately stop usage of any Fedora 41 or Fedora Rawhide instances for work or personal activity until users can downgrade their XZ version. Red Hat has also reverted to 5.4.x versions of XZ in Fedora 40 beta. Linux administrators can verify which version of XZ is installed by querying their package manager. CISA and CSA have published advisories warning developers and users to downgrade to an uncompromised XZ version (e.g. 5.4.6 Stable) and to look out for any malicious or suspicious activity on their systems. For more information: https://www.csa.gov.sg/alerts-advisories/alerts/2024/al-2024-033 https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users https://www.bleepingcomputer.com/news/security/red-hat-warns-of-backdoor-in-xz-tools-used-by-most-linux-distros/#google_vignette Comments are closed.
|