Security Compromise in XZ Utils (CVE-2024-3094)

Dynatrace Status

[Update from April 2, 2024]

On March 29, 2024, the Dynatrace team became aware of the Supply Chain Attack Vulnerability affecting XZ Utils (CVE-2024-3094).

The Dynatrace team has finished the analysis and found no evidence that Dynatrace components are affected.

Use Dynatrace to find possibly affected distributions

Curious about how you can use Dynatrace to search for potentially affected Linux distributions in your infrastructure? Use this DQL query to identify hosts with certain Linux distributions that can be impacted by CVE-2024-3094:

fetch dt.entity.host
| filter matchesPhrase(osVersion,"fedora 40") OR matchesPhrase(osVersion,"fedora 41") OR matchesPhrase(osVersion,"rawhide") OR matchesPhrase(osVersion,"alpine") OR matchesPhrase(osVersion,"arch") OR matchesPhrase(osVersion,"kali") OR matchesPhrase(osVersion,"opensuse") OR matchesPhrase(osVersion,"debian")
| summarize {affectedHosts = collectDistinct(entity.name), affectedHostIDs=collectDistinct(id)}, by:{osVersion}
| fields osVersion, affectedHosts, affectedHostIDs
| sort osVersion

The following distributions are known to be affected by the vulnerability:

  • Fedora: 40, 41 and rawhide releases (stable releases not affected)
  • Alpine: Edge in versions 5.6.1-r0 and 5.6.1-r1 (stable releases not affected)
  • Arch
  • Kali (between March 26 and 29)
  • openSUSE Tumbleweed and openSUSE MicroOS (between March 7 and 28)
  • Debian testing, unstable, and experimental versions (from 5.en5.1alpha-0.1 to 5.6.1-1)

Notice

This document is provided on an “as is” basis, with no express or implied warranties. Some of the information provided may come from third parties. Your use of the information in the document or materials linked from the document is at your own risk. Dynatrace reserves the right to change or update this document without notice at any time. Dynatrace expects to update this document as new information becomes available.

Get article updates or report security vulnerabilities

Dynatrace takes a proactive approach in communicating security vulnerability information to customers. Learn more about Dynatrace security and our security policy. To report a security issue, email security@dynatrace.com.

RSS feed Report issue