Steven Shiau unleashed a fresh edition of Clonezilla Live, his disk cloning/imaging program premised on the formidable Clonezilla software. Designated as Clonezilla Live 3.1.2-22, this version incorporates a recent kernel and guards the live system from the newest XZ backdoor.
Clonezilla Live 3.1.2-22 is the second iteration of the Clonezilla Live 3.1.2 series, mainly released as an emergency response to guard the live system against the recent XZ backdoor. This was accomplished by reducing the xz-utils package from the version 5.6.0 to version 5.4.5, which is not vulnerable to the backdoor. The earlier version could allow a remote hacker to violate the SSH server.
As a result, it is advisable to remove the preceding Clonezilla Live 3.1.2-9 ISO from your system and use this updated version. This new version also includes a recent kernel, specifically Linux 6.7.9-2 from the Debian Sid repositories. The previous Clonezilla version utilized Linux kernel 6.6.11-1, hence the new kernel should provide enhanced hardware compatibility.
In addition to these improvements, the Clonezilla Live 3.1.2-22 version introduces a new format for messages sent to ocsmgrd. It employs a comma (,) to segregate the messages, adds the powermgmt-base and pdsh utilities to the live system, and updates the ezio package to version 2.0.11.
It also adds support for rotating Clonezilla-related log files and support for receiving new format messages from clients, fixes a bug that prevented messages from being sent to ocsmgrd in Bluetooth mode, and removes the ip= parameter from boot parameters due to a bug when creating a custom ISO using the ocs-iso utility.
The disable_sudo_use_pty script was updated as well to negate it explicitly, not just comment it, which should avoid distortion of gpm with jfbterm. Of course, the underlying system was upgraded and it’s synced with the Debian Sid repository as of April 8th, 2024.
Clonezilla Live 3.1.2-22 is available for download right now from the official website as live ISO images for 32-bit and 64-bit systems. Again, it is highly recommended that you use this new Clonezilla Live version for all your disk imaging or cloning tasks rather than any of the previous releases due to the XZ backdoor.
Last updated 7 hours ago