Updated webmin packages fix CVE-2015-1990
Publication date: 08 Sep 2015Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-1990
Description
Updated webmin package fixes security vulnerability: A malicious website could create links or Javascript referencing the xmlrpc.cgi script, triggered when a user logged into Webmin visits the attacking site (CVE-2015-1990).
References
SRPMS
5/core
- webmin-1.760-1.mga5
4/core
- webmin-1.760-1.mga4