Malicious Backdoor Found in xz Library Infects Fedora Linux 40 & Rawhide

Date:

Red Hat warns of a malicious backdoor uncovered in the popular Linux compression library xz, potentially affecting 40 instances of Fedora Linux and the Fedora Rawhide developer distribution. The malicious code found in XZ versions 5.6.0 and 5.6.1 could allow remote backdoor access through OpenSSH and systemd, with a severity rating of 10 out of 10.

Users of Fedora Linux 40 and Fedora Rawhide are advised to check their xz suite versions as they may have received the infected releases. While the supply chain breach has been discovered early on, it is recommended for all Linux and OS distribution users to verify and remove any tainted XZ builds. Red Hat assures that Red Hat Enterprise Linux (RHEL) is not impacted.

The malware-infected code, concealed within the source code tarball of xz 5.6.0 and 5.6.1, poses a threat by interfering with the authentication process of services like OpenSSH via systemd. This interference could potentially grant unauthorized access to malicious actors, compromising the security of affected systems. The malware was strategically designed to manipulate the behavior of the OpenSSH server daemon, ultimately enabling unauthorized remote access.

Experts suggest that this breach was likely orchestrated by a sophisticated attacker, as indicated by the complex nature of the malicious code. The US government’s Cybersecurity and Infrastructure Security Agency (CISA) has already issued recommendations to address this critical security vulnerability.

As further investigations and measures are being taken to mitigate the impact of this backdoor, users are urged to stay informed and take necessary precautions to safeguard their systems and data. Stay tuned for updates on this developing cybersecurity issue.

See also  Google's AI-powered search expands to 120+ countries, but not yet in Spain, Mexico

Frequently Asked Questions (FAQs) Related to the Above News

What is the malicious backdoor found in the xz library?

The malicious backdoor found in the xz library is a piece of code hidden within versions 5.6.0 and 5.6.1 that could potentially allow remote backdoor access through OpenSSH and systemd.

Which Linux distributions are affected by this backdoor?

Fedora Linux 40 and Fedora Rawhide are potentially affected by this backdoor. However, Red Hat has confirmed that Red Hat Enterprise Linux (RHEL) is not impacted.

What is the severity rating of this security vulnerability?

The severity rating of this backdoor is 10 out of 10, indicating a critical security threat.

How can users check if their xz suite versions are infected?

Users of Fedora Linux 40 and Fedora Rawhide are advised to check their xz suite versions to see if they have received the infected releases. They should verify and remove any tainted XZ builds.

What actions should users take to protect their systems?

Users are urged to stay informed about this security issue and take necessary precautions to safeguard their systems and data. It is important to follow any updates and recommendations provided by Red Hat, the Cybersecurity and Infrastructure Security Agency (CISA), and other relevant authorities.

Who is likely behind this backdoor breach?

Experts suggest that this breach was likely orchestrated by a sophisticated attacker given the complex nature of the malicious code.

Please note that the FAQs provided on this page are based on the news article published. While we strive to provide accurate and up-to-date information, it is always recommended to consult relevant authorities or professionals before making any decisions or taking action based on the FAQs or the news article.

Share post:

Subscribe

Popular

More like this
Related

Obama’s Techno-Optimism Shifts as Democrats Navigate Changing Tech Landscape

Explore the evolution of tech policy from Obama's optimism to Harris's vision at the Democratic National Convention. What's next for Democrats in tech?

Tech Evolution: From Obama’s Optimism to Harris’s Vision

Explore the evolution of tech policy from Obama's optimism to Harris's vision at the Democratic National Convention. What's next for Democrats in tech?

Tonix Pharmaceuticals TNXP Shares Fall 14.61% After Q2 Earnings Report

Tonix Pharmaceuticals TNXP shares decline 14.61% post-Q2 earnings report. Evaluate investment strategy based on company updates and market dynamics.

The Future of Good Jobs: Why College Degrees are Essential through 2031

Discover the future of good jobs through 2031 and why college degrees are essential. Learn more about job projections and AI's influence.