Page MenuHomePhabricator

[CVE-2024-3094] SSH backdoor vulnerability in liblzma in Debian Sid
Closed, InvalidPublicSecurity

Description

I imagine you folks are aware of this already, but in case not:

https://hackaday.com/2024/03/29/security-alert-potential-ssh-backdoor-via-liblzma/

Event Timeline

Aklapper renamed this task from Possible SSH backdoor vulnerability in Debian to [CVE-2024-3094] SSH backdoor vulnerability in liblzma in Debian Sid.Mar 30 2024, 8:06 AM
RLazarus claimed this task.
RLazarus subscribed.

Yep, we're following closely -- but we don't use Debian unstable, so we're not directly affected. Thanks for checking!

Reedy changed the visibility from "Custom Policy" to "Public (No Login Required)".Apr 2 2024, 7:29 AM
Reedy changed the edit policy from "Custom Policy" to "All Users".
Aklapper changed the task status from Resolved to Invalid.Apr 2 2024, 7:45 AM