Possibly linux@lemmy.zip to Linux@lemmy.mlEnglish · 8 months agoXZ backdoor in a nutshelllemmy.zipimagemessage-square160fedilinkarrow-up11.23Karrow-down110
arrow-up11.22Karrow-down1imageXZ backdoor in a nutshelllemmy.zipPossibly linux@lemmy.zip to Linux@lemmy.mlEnglish · 8 months agomessage-square160fedilink
minus-squareAatube@kbin.melroy.orglinkfedilinkarrow-up6·edit-28 months ago5.6.1 in fact made it less resources-intensive, but the distro happened to not have updated yet when Freund discovered the backdoor.
minus-squareCochise@lemmy.eco.brlinkfedilinkarrow-up2·8 months agoAuthentication bypass should give you interactive access. “I’m in” like. Remote code execution only allows you to run a command, without permanent access. You can use some RCE vulnerabilities to bypass authentication, but not all.
minus-squarePipedLinkBot@feddit.rocksBlinkfedilinkEnglisharrow-up1·8 months agoHere is an alternative Piped link(s): https://www.piped.video/watch?v=jqjtNDtbDNI Piped is a privacy-respecting open-source alternative frontend to YouTube. I’m open-source; check me out at GitHub.
deleted by creator
5.6.1 in fact made it less resources-intensive, but the distro happened to not have updated yet when Freund discovered the backdoor.
Authentication bypass should give you interactive access. “I’m in” like. Remote code execution only allows you to run a command, without permanent access. You can use some RCE vulnerabilities to bypass authentication, but not all.
deleted by creator
Here is an alternative Piped link(s):
https://www.piped.video/watch?v=jqjtNDtbDNI
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source; check me out at GitHub.