Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/112201283591574278">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Tuesday, 02-Apr-2024 20:02:41 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20250105013211.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/112197989875551946" rel="in-reply-to">in reply to</a></div></section><article><p>If you use Microsoft Vulnerability Management, it is false positiving on CVE-2024-3094 aka <a href="https://cyberplace.social/tags/XZ" rel="tag">#XZ</a> backdoor - it is picking up the Cygwin version of XZ as vuln on Windows systems. </p><p>The Cygwin packages predate the backdoor and it doesn’t impact Windows, also the file it flags isn’t the backdoor but lzmadec.exe </p><p><a href="https://cygwin.com/packages/summary/xz.html" rel="nofollow noreferrer">https://cygwin.com/packages/summary/xz.html</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2881363#notice-5746321">In conversation</a><time datetime="2024-04-02T20:02:41+09:00" title="Tuesday, 02-Apr-2024 20:02:41 JST">about 10 months ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/112201283591574278" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/112201283591574278">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://cygwin.com/packages/summary/xz.html">Cygwin Package Summary for xz</a></h5><div></div></header><div></div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Tuesday, 02-Apr-2024 20:02:41 JST Kevin Beaumont
in reply to
If you use Microsoft Vulnerability Management, it is false positiving on CVE-2024-3094 aka #XZ backdoor - it is picking up the Cygwin version of XZ as vuln on Windows systems.
The Cygwin packages predate the backdoor and it doesn’t impact Windows, also the file it flags isn’t the backdoor but lzmadec.exe
https://cygwin.com/packages/summary/xz.html
In conversationabout 10 months ago from cyberplace.socialpermalink
Attachments
1. No result found on File_thumbnail lookup.
  Cygwin Package Summary for xz

Public

Embed Notice

HTML Code

Corresponding Notice