payload appears to have been hidden in test data then decrypted and injected during the build process.

  • underisk [none/use name]@hexbear.netOP
    link
    fedilink
    English
    arrow-up
    2
    ·
    8 months ago

    Preliminary stuff I read yesterday suggests that it’s RCE triggered by a signal sent to SSHD. Safest bet is to nuke your system if you had the exploitable library running with an exposed sshd.