iddo

## XZ Backdoor Analysis
XZ Backdoor symbol deobfuscation. Updated as i make progress

## xz-backdoor.md

      
              1 file
            
          
              62 forks
            
          
              564 comments
            
          
              1287 stars
            
          
                thesamesam
                / xz-backdoor.md
            
            
              Last active
              May 1, 2024 14:51
            
              
                xz-utils backdoor situation (CVE-2024-3094)
              
          
    FAQ on the xz-utils backdoor (CVE-2024-3094)

This is a living document. Everything in this document is made in good
faith of being accurate, but like I just said; we don't yet know everything
about what's going on.
Background

On March 29th, 2024, a backdoor was discovered in
xz-utils, a suite of software that

  
## rtsp_on_demand.sh
#!/usr/bin/env bash
set -e

DEVICE_NUMBER="9"
DEVICE_FILE="/dev/video${DEVICE_NUMBER}"
RTSP_URL="rtsp://username:password@WIFIFCAM:554"

# GitHub: iddo
# https://github.com/umlaeute/v4l2loopback/issues/109#issuecomment-617638198
	#!/usr/bin/env bash
	set -e

	DEVICE_NUMBER="9"
	DEVICE_FILE="/dev/video${DEVICE_NUMBER}"
	RTSP_URL="rtsp://username:password@WIFIFCAM:554"

	# GitHub: iddo
	# https://github.com/umlaeute/v4l2loopback/issues/109#issuecomment-617638198