freebsd-ports/sysutils/webmin/distinfo at dd13f77babd21b4bf27956c780a2dd79c6c2983e - kpriv/freebsd-ports - Disroot Forgejo: Brace yourself, merge conflicts ahead.

kpriv/freebsd-ports

Jimmy Olgeni 763c5b190a Update sysutils/webmin to version 1.930.

Contains fix for CVE-2019-15107.

From https://virtualmin.com/node/66890:

  To exploit the malicious code, your Webmin installation must have Webmin ->
  Webmin Configuration -> Authentication -> Password expiry policy set to
  Prompt users with expired passwords to enter a new one. This option is not
  set by default, but if it is set, it allows remote code execution.

PR:           239956
Submitted by: Bert JW Regeer <xistence@0x58.com>
Security:     CVE-2019-15107

2019-08-18 22:53:12 +00:00

3 lines

157 B

Text

Raw Blame History

	`TIMESTAMP = 1566166757`
	`SHA256 (webmin-1.930.tar.gz) = f5789f180852d8bd3510b342cc968fba928ece6c940763a89dc0d8f059bde682`
	`SIZE (webmin-1.930.tar.gz) = 30932910`