8913 – Trojan Horse in Sendmail Distribution

Bug 8913 - Trojan Horse in Sendmail Distribution

Summary: Trojan Horse in Sendmail Distribution

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	x86 Linux

Importance:	High critical (vote)
Assignee:	Daniel Ahlberg (RETIRED)

URL:	http://www.cert.org/advisories/CA-200...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2002-10-08 21:30 UTC by PJ
Modified:	2003-02-04 19:42 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description PJ 2002-10-08 21:30:07 UTC

The CERT advisory pretty much says it all. 

http://www.cert.org/advisories/CA-2002-28.html

I checked the ebuild file, and you were pulling files from the compromised FTP. 
I think re emerging sendmail should fix the problem, but im not 100%. You 
definately should give it a look.

-PJ
http://www.elitegamer.com

Comment 1 Daniel Ahlberg (RETIRED) gentoo-dev

2002-10-09 02:14:11 UTC

We're safe, the MD5 sum in portage matches the MD5 sum in the CERT advisory. If
a user would have tried to download the trojan version the MD5 check would have
failed.