12
Analysis of bash-stage obfuscation used to hide the liblzma/xz backdoor
(gynvael.coldwind.pl)
Okay - so it was cleverly hidden. Real question is what the binary blob does, so we can properly assess the damage...
Preliminary stuff I read yesterday suggests that it’s RCE triggered by a signal sent to SSHD. Safest bet is to nuke your system if you had the exploitable library running with an exposed sshd.
On the road to fully automated luxury gay space communism.
Spreading Linux propaganda since 2020
Rules: