Posted 3/29/2024, 5:50:43 PM
Red Hat Warns of Backdoor in XZ Tools Impacting Fedora 41 and Rawhide
- Red Hat warned users to stop using Fedora 41 or Rawhide due to a backdoor found in XZ compression tools
- The backdoor was found in XZ versions 5.6.0 and 5.6.1 and allows unauthorized system access
- The malicious code interferes with SSH authentication via systemd to potentially allow remote code execution
- Red Hat assigned CVE-2024-3094 to track the issue and reverted Fedora Beta to XZ 5.4.x
- CISA also issued an advisory warning developers and users to downgrade XZ and check systems for suspicious activity
