Slashdot's reporting that a system on SourceForge was
compromised. At this point, no mention is made of the issue on the
site's front page, and the mail sent out to developers who may have
been affected simply notes that potentially compromised passwords
have been randomized, requiring users to get a new one.
The mail Slashdot quotes, in part:
"You have been contacted, because according to our log
files, you have used SourceForge during the past week and may have
used the system that was compromised. In order to complete the
security fix, we are asking all users who used the system to change
their password immediately. We've reset your password to a randomly
generated string. "