I am not completely sure about this exploit, but seems like a binary needed to b... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		YetAnotherNick on March 29, 2024 \| parent \| context \| favorite \| on: Backdoor in upstream xz/liblzma leading to SSH ser... I am not completely sure about this exploit, but seems like a binary needed to be modified for the exploit to work[1] which was later picked up by build system. https://github.com/tukaani-project/xz/commit/6e636819e8f0703...

ok123456 on March 29, 2024 [–]

The binary was an xz test file that contained a script that patched the c-code.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact