News Ubuntu 24.04 Beta released after week delay due to malicious code

Admin · Apr 12, 2024

Delayed by a week due to malicious code in the XZ compression tools, Ubuntu 24.04 'Nodle Numbat' is ready for beta users to test.

Ubuntu 24.04 Beta released after week delay due to malicious code : Read more

AkroZ · 2024-05-03T02:29:08-0400

It would have been a major breach noted in history if it will not have been found.
The malicious xz util modify glibc used by the compiler gcc which modify one function from OpenSSH to introduce a backdoor. You can't see the backdoor in the code source as it is the compiler which introduce it in the binary.
All systems with SSH build with gcc (most) would have been compromised.
The author was one of the maintainer of xz util and have made some others dubious changes in others projects like libarchive.
This again reveal the issue of checking the code of all the dependencies for projects as criticals as compilers and operating systems.

Search

News Ubuntu 24.04 Beta released after week delay due to malicious code

Admin

Administrator

AkroZ

Commendable

TRENDING THREADS

Latest posts

Moderators online

Share this page