Team PHP announced last Sunday, attackers were able to access the server or main Git uploading two commit malicious (claiming to remedy a "typo" in the source code), including a backdoor. These commissions were immediately observed and canceled and thus never reached the end users.

In response to the hack, the PHP team moves their servers to GitHub, making them canonical.

The investigation into the main cause and the exact purpose of the compromise is still ongoing, so launches will be suspended for two weeks, assuming no other problems are discovered. Here is the announcement:

Hi everyone,

Yesterday (2021-03-28) two malicious commits were pushed to the php-src
repo [1] from the names of Rasmus Lerdorf and myself. We don't know how yet
exactly this happened, but everything points towards a compromise of the server (rather than a compromise of an individual git account).

While investigation is still underway, we have decided that maintaining our
own git infrastructure is an unnecessary security risk, and that we will
discontinue the server. Instead, the repositories on GitHub,
which were previously only mirrors, will become canonical. This means that
changes should be pushed directly to GitHub rather than to

While previously write access to repositories was handled through our
home-grown karma system, you will now need to be part of the php
organization on GitHub. If you are not part of the organization yet, or
don't have access to a repository you should have access to, contact me at with your and GitHub account names, as well as the
permissions you're currently missing. Membership in the organization
requires 2FA to be enabled.

This change also means that it is now possible to merge pull requests
directly from the GitHub web interface.

We're reviewing the repositories for any corruption beyond the two
referenced commits. Please contact if you notice anything.




  • What is your reaction?
  • powered by Verysign
  • like
  • unmoved
  • amused
  • excited
  • angry
  • sad
TENDINTA  |  Zorin OS 16 in new clothes: test the beta version
Utilizator Linux - Solus OS, pasionat de calatorii.
2268 articole
In context

  • Comment
  • powered by Verysign

Nici un comentariu inca. Fii primul!