This site may contain outdated or incomplete information.
Gentoo Incident
Attackers used a remote exploit to compromise an rsync.gentoo.org machine holding a copy of the emerge repository and implant a rootkit.
Impact
N/A
Type of compromise
Publishing Infrastructure - the attackers were able to compromise filesystem of the source code repository and thus possibly (but highly unlikely) serve malicious packages to users. The compromise was of an rsync server that was responsible for serving package sources to users.
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.