SSH Key Update
-On 2024-03-29, a backdoor was discovered in the +
On 2024-03-29, a + backdoor was publicly disclosed + in the xz-utils software. Inferencium systems did have the affected versions of this software installed, and the tools were used. The software has since been downgraded to @@ -71,10 +73,11 @@
The only criteria met by Inferencium systems is amd64 as the system
architecture; this is not enough for the backdoor to be effective. Even if all criteria
other than running glibc were met, Inferencium systems would still be unaffected by this
- attack due to musl not supporting the required IFUNC functionality.
IFUNC functionality which
+ the backdoor seems heavily dependent on.
Despite the evidence, it is unknown exactly what this malicious code does and is capable of in entirety. As a precautionary measure, I have generated a new SSH key and - classifed the previous key as compromised. You can find my new key on the + classified the previous key as compromised. You can find my new key on the Key webpage.
There is no evidence that my previous key was compromised, so this is entirely a precautionary measure. All files and Git commits, tags, and releases signed with the