Quick one-liner to check CVE-2024-3094! ๐ณ๐ฆ๐ข๐ฅ๐ญ๐ช๐ฏ๐ฌ $(๐ข๐ธ๐ฌ '/๐ญ๐ช๐ฃ๐ญ๐ป๐ฎ๐ข.๐ด๐ฐ.5/{๐ฑ๐ณ๐ช๐ฏ๐ต $3}' <(๐ญ๐ฅ๐ฅ $(๐ธ๐ฉ๐ช๐ค๐ฉ ๐ด๐ด๐ฉ๐ฅ))) \ | ๐จ๐ณ๐ฆ๐ฑ -๐ฒ๐ "๐ญ๐ช๐ฃ๐ญ๐ป๐ฎ๐ข.๐ด๐ฐ.5.6.0|๐ญ๐ช๐ฃ๐ญ๐ป๐ฎ๐ข.๐ด๐ฐ.5.6.1" \ && ๐ฆ๐ค๐ฉ๐ฐ "๐๐ง๐ง๐ฆ๐ค๐ต๐ฆ๐ฅ ๐ฃ๐บ ๐๐๐-2024-3094" || ๐ฆ๐ค๐ฉ๐ฐ "๐๐ฐ๐ต ๐ข๐ง๐ง๐ฆ๐ค๐ต๐ฆ๐ฅ" #linux #security
I was just doing some lookup in my system and a simple `find / -name liblzma.so.5*ย 2> /dev/null | wc -l` gave me `246`. The sheer amount of schroots I have to clear up, I swear.....
Developing business context for kubernetes platforms with open-source tools.
1moI just tried this on a varied bunch of different vm nodes I have. If you get an error about ldd missing file arguments, some distros want the ldd to be run under sudo, ie with root's $PATH. If you get a "missing operand" error from readlink, some distros want an argument such as "-f" for the readlink command.