Skip to main content

    Safety-relevant information:

    Impact of the CVE-2024-3094 vulnerability on our products

    I. Vulnerability summary

    Critical backdoor in XZ for Linux: The open source provider Red Hat has announced that malicious code has been discovered in versions 5.6.0 and 5.6.1 of the “xz” tools and libraries, which makes it possible to bypass authentication in sshd via systemd.

    Further information on the vulnerability CVE-2024-3094 can be found here.

    II. Impact on our products

    TA Triumph-Adler software products are not affected by this security vulnerability.