Home > Security > Advisories


Mandriva Advisories

Package name webmin
Date January 26th, 2001
Advisory ID MDKSA-2001:016
Affected versions 7.1, 7.2, CS1.0
Synopsis Updated webmin packages fix temporary file insecurities

Problem Description

Previous versions of webmin would create temporary files insecurely on
several occasions. This could be exploited by a local attacker to
overwrite or create arbitrary files and possibly gain root privileges.

Updated Packages

Mandrakelinux 7.1

 72fa7a51badb3adaa3cdc04e8faf9a51  7.1/RPMS/webmin-0.84-1.2mdk.noarch.rpm
7434f066785ae0ebdfe44d7786241456  7.1/SRPMS/webmin-0.84-1.2mdk.src.rpm

Mandrakelinux 7.2

 ee5ced113e1edeed496bd540fc3d7ed3  7.2/RPMS/webmin-0.84-1.1mdk.noarch.rpm
9c66c3a3a0e2b201c38e6e2fcf918a8b  7.2/SRPMS/webmin-0.84-1.1mdk.src.rpm

Corporate Server 1.0.1

 72fa7a51badb3adaa3cdc04e8faf9a51  1.0.1/RPMS/webmin-0.84-1.2mdk.noarch.rpm
7434f066785ae0ebdfe44d7786241456  1.0.1/SRPMS/webmin-0.84-1.2mdk.src.rpm


To upgrade automatically, use MandrivaUpdate.


Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :

                rpm --checksig package.rpm

You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.

If you use MandrivaUpdate, the verification of md5 checksum and GPG signature is performed automatically for you.