Someone almost managed to inject a vulnerability into the source code for sshd.
You’re probably thinking of the Jia Tan attack on xz; because of a distro patch in Debian, code in xz had the ability to affect sshd. The changes weren’t actually to the sshd source, but trying to use an obscure route to affect sshd.
You’re probably thinking of the Jia Tan attack on xz; because of a distro patch in Debian, code in xz had the ability to affect sshd. The changes weren’t actually to the sshd source, but trying to use an obscure route to affect sshd.