FreeBSD / ports / 509244 / Update sysutils/usermin to version 1.780.

FreeBSD/ports 9fe42d2 (r509244) — sysutils/usermin pkg-plist distinfo

2019-08-18 23:00:46 UTC by Jimmy Olgeni (olgeni) on ⎇

2019Q4

Update sysutils/usermin to version 1.780.

Contains fix for CVE-2019-15107.

From https://virtualmin.com/node/66890:

  To exploit the malicious code, your Webmin installation must have Webmin ->
  Webmin Configuration -> Authentication -> Password expiry policy set to
  Prompt users with expired passwords to enter a new one. This option is not
  set by default, but if it is set, it allows remote code execution.

PR:           239957
Submitted by: Bert JW Regeer <xistence at 0x58.com>
Security:     CVE-2019-15107

Delta		File
+210	-26	sysutils/usermin/pkg-plist
+3	-3	sysutils/usermin/distinfo
+1	-1	sysutils/usermin/Makefile
+214	-30	3 files

Unified Split Raw