Am 25.09.2012 17:52, schrieb Marc Delisle:
> Reindl Harald a écrit :
>> Am 25.09.2012 17:35, schrieb Marc Delisle:
>>> Reindl Harald a écrit :
>>>> Am 25.09.2012 15:44, schrieb Marc Delisle:
>>>>> the PMASA-2012-5 security advisory has been published on
>>>>> In short, a SourceForge.net mirror server was compromised, leading to
>>>>> the distribution of a doctored phpMyAdmin kit containing a backdoor.
>>>>> phpMyAdmin-22.214.171.124-all-languages.zip fetched from this mirror server is
>>>>> known to be affected. To our knowledge only one mirror is affected,
>>>>> which appears to be taken offline already. All other SourceForge.net
>>>>> mirrors are unaffected.
>>>> ONLY the zip and "phpMyAdmin-126.96.36.199-all-languages.tar.bz2" is not affected?
>>> From the advisory online:
>>> "We currently know only about phpMyAdmin-188.8.131.52-all-languages.zip being
>>> affected, check if your download contains a file named server_sync.php."
>> [root@...:~]$ locate server_sync.php
>> no such file on the machine
>> Fedora-RPM generated form tar.bz2 on 2012-08-13
>> [root@...:~]$ rpm -q phpMyAdmin
> I assume that the person at Fedora who built the rpm, had verified our
> checksum on http://www.phpmyadmin.net/home_page/downloads.php before
> using the kit.
in this case the person was me like for most of our server-software :-)
20120813.rh = timestamp.reindl.harald
not 100% sure that i verfied it this time, but my package was built
very shortly after the release announce and pretty sure before
the file was modified