[kwlug-disc] Fw: Backdoor found in widely used Linux utility
Khalid Baheyeldin
kb at 2bits.com
Sat Mar 30 10:22:50 EDT 2024
On Sat, Mar 30, 2024 at 10:15 AM Mikalai Birukou <mb at 3nsoft.com> wrote:
>
> I'd love to see what kind of pattern in a build process has been (ab)used, but repos are inaccessible.
It is in Andres Freund's overview of the problem, which Jason and
myself linked to in previous emails.
The link that I found and posted here has detailed analysis of the
files that add the malicious code.
Here it is again.
https://lwn.net/ml/oss-security/20240329155126.kjjfduxw2yrlxgzm@awork3.anarazel.de/
A short summary of that is in the "Design" section here
https://gist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27
More information about the kwlug-disc
mailing list