Malicious Code in XZ Utils for Linux Systems Enables Remote Code Execution


The malicious code inserted into the open-source library XZ Utils, a widely used package present in major Linux distributions, is also capable of facilitating remote code execution, a new analysis has revealed.
The audacious supply chain compromise, tracked as CVE-2024-3094 (CVSS score: 10.0), came to light last week when Microsoft engineer and PostgreSQL developer Andres Freund







2024-04-02 13:18:00


0 Comments

Leave a Reply

Avatar placeholder

Your email address will not be published. Required fields are marked *