2 May
2024
2 May
'24
09:06
https://bugzilla.suse.com/show_bug.cgi?id=1222180
https://bugzilla.suse.com/show_bug.cgi?id=1222180#c6
--- Comment #6 from Dirk Mueller
As written, this will not help, we still have other patches which requires sshd to be linked against libsystemd
it helps but is not sufficient. the login patch could be using plain dbus-1 for example.
and libsystemd will be loaded via dlopen() anyways. Which opens the question: does the backdoor work, if liblzma is loaded as dependency via dlopen()?
I believe it doesn't because it depends on the IFUNCs being executed before libcrypto is initialized. -- You are receiving this mail because: You are on the CC list for the bug.