• EN

Linux Library XZ Vulnerability Scanner!

coolsport00
Userlevel 7
Badge +17

This past week, @JMeixner posted about the Linux XZ Vulnerability (CVE-2024-3094). You can read a bit more about it below:

A firmware security firm, Binarly, has since created a FREE online “scanner” to detect Linux executables impacted by the XZ Utils supply chain attack. You can read more details about the logic behind the scanner as well as download links from the article below:

https://www.bleepingcomputer.com/news/security/new-xz-backdoor-scanner-detects-implant-in-any-linux-binary/

Best.

Shane Williford - Veeam VMCA/VMCE | Veeam Legend | VUG Leader | VCP-DCV | Twitter: @coolsport00

2 comments

Chris.Childerhose
Userlevel 7
Badge +20

That was quite the vulnerability and great to see someone coming up with something like this to scan for it.  Going to check it out and pass it along.

Chris Childerhose - VMCA2022 | VMCE2023 | Veeam Vanguard 7* | Veeam Legend 3* | vExpert 5* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
dloseke
Userlevel 7
Badge +6

My understanding is that most people will not yet be on this version of XZ Utils.  Indeed, my machines were much older.  I used the below command to grab the version from my Ubuntu boxes as referenced here. Great to find a scanning tool as well...thanks for sharing Shane!

dpkg-query -l '*xz*'

 

Derek M. Loseke, Senior Systems Engineer | Veeam Legend 2022-2023 | VMSP/VMTSP | VCP6-DCV | VSP/VTSP | CCNA | https://technotesanddadjokes.com | @dloseke

Comment


Terms & Conditions