Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2024/03/30 2:57 a.m.5 views

SUSE CVE-2024-3094

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in...

10CVSS7.2AI score0.85974EPSS
Exploits40References6
OSV
OSV
added 2024/03/29 5:15 p.m.5 views

ALPINE-CVE-2024-3094

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in...

10CVSS7.2AI score0.85974EPSS
Exploits40References1
OSV
OSV
added 2024/03/29 5:15 p.m.2 views

UBUNTU-CVE-2024-3094

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in...

10CVSS7.3AI score0.85974EPSS
Exploits40References4
CVE
CVE
added 2024/03/29 4:51 p.m.766 views

CVE-2024-3094

CVE-2024-3094 - Normal mode Affected: XZ Utils (xz-utils) upstream tarballs starting with 5.6.0; vulnerable in 5.6.0 and 5.6.1, per multiple advisories. Root cause: malicious code injected into build artifacts during the tarball preparation, with a prebuilt object file inserted into the liblzma b...

10CVSS9.6AI score0.85974EPSS
In wildExploits40References55Affected Software1
Rows per page
Query Builder