CommitterJimmy Olgeni (olgeni) (1)
AuthorJimmy Olgeni (olgeni) (1)
Branches2019Q4 (1)


FreeBSD/ports 763c5b1 (r509243)sysutils/webmin pkg-plist distinfo

by Jimmy Olgeni (olgeni) on ⎇
Update sysutils/webmin to version 1.930.

Contains fix for CVE-2019-15107.

From https://virtualmin.com/node/66890:

  To exploit the malicious code, your Webmin installation must have Webmin ->
  Webmin Configuration -> Authentication -> Password expiry policy set to
  Prompt users with expired passwords to enter a new one. This option is not
  set by default, but if it is set, it allows remote code execution.

PR:           239956
Submitted by: Bert JW Regeer <xistence at 0x58.com>
Security:     CVE-2019-15107
DeltaFile
+846-782sysutils/webmin/pkg-plist
+3-3sysutils/webmin/distinfo
+1-2sysutils/webmin/Makefile
+850-7873 files

UnifiedSplitRaw