What is Nostr?
Filippo Valsorda :go: /
npub1whz…kn2m
2024-03-30 17:31:18

Filippo Valsorda :go: on Nostr: I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* ...

I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission.

The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system().

It's RCE, not auth bypass, and gated/unreplayable.

More details in this thread: https://bsky.app/profile/did:plc:x2nsupeeo52oznrmplwapppl/post/3kowjkx2njy2b
Author Public Key
npub1whzyg92c6fsvpjjcnn504z0a2pfwenctp872sgmedqg2np4drj8qwakn2m