Gentoo Was Compromised On GitHub

Articles & Reviews
News Archive
Forums
Premium
Categories

Computers GPUs / Graphics Cards Linux Gaming Memory Motherboards CPUs / Processors Software Storage Operating Systems Peripherals

Gentoo Was Compromised On GitHub

Written by Michael Larabel in Operating Systems on 28 June 2018 at 09:32 PM EDT. 24 Comments

Unknown individuals were able to gain access to the Gentoo repositories on GitHub, including the modification of said repositories.

While we don't normally cover all these individual security incidents, a Gentoo representative has asked we relay it here. Their public announcement warns, "All Gentoo code hosted on github should for the moment be considered compromised."

But for those relying upon the Gentoo.org infrastructure or Gentoo outside of GitHub, there is no known compromise, including the master Gentoo ebuild repository.

Their notice can be read on Gentoo.org. Gentoo is working with GitHub to properly address the situation.

24 Comments

About The Author

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com.

Related Operating Systems News

Raspberry Pi's Raspbian Gets New Setup Wizard, New PDF Viewer

Alpine Linux 3.8 Released With ARM64 Raspberry Pi Support, Netboot On All Architectures

Jolla's Sailfish OS Ported To The Gemini PDA

Arch-Based Manjaro 18.0 Beta 3 Available For Testing

Genode-Based Sculpt OS Now Available With Easy-To-Use Disk Image

Purism's PureOS To Explore OSTree/Flatpak, Wants To Develop An "Ethical App Store"