Webmin 1.990 has been released on May 22, fixing a security issue: https://www.webmin.com/security.html https://www.webmin.com/changes.html Advisory: ======================== Updated webmin package fixes security vulnerability: Less privileged Webmin users (excluding those created by Virtualmin and Cloudmin) can modify arbitrary files with root privileges, and so run commands as root (CVE-2022-30708). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30708 https://www.webmin.com/security.html https://www.webmin.com/changes.html ======================== Updated package in core/updates_testing: ======================== webmin-1.993-1.mga8 from webmin-1.993-1.mga8.src.rpm
Comment 0 should have said 1.994. Updated package in core/updates_testing: ======================== webmin-1.994-1.mga8 from webmin-1.994-1.mga8.src.rpm
MGA8-64 Plasma on Lenovo B50 in Dutch. No installation issues. Checked System- Software package updates, lists 133 packages fof which new versions are available. System- Users and groups:looks OK Servers: checked that apache, mysql, postgres could be started and stopped, checked using systemctl Tools: checked System and Server Status Networking: checked Network Configuration, Network Utilities and Shorewall Firewall All looks OK with valid and expected values.
Whiteboard: (none) => MGA8-64-OKCC: (none) => herman.viaene
Validating. Advisory in Comment 0.
CC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0216.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED