{"id":"MGASA-2017-0376","summary":"Updated webmin packages fix security vulnerability","details":"The webmin package has been updated to version 1.840, which fixes a\ncross-site scripting (XSS) issue, an issue due to improper escaping in the\ndownload module, and has other bug fixes and enhancements.  See the\nupstream release announcements and change log for details.\n","modified":"2026-04-16T04:27:15.375097Z","published":"2017-10-18T20:19:34Z","references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0376.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=21863"},{"type":"WEB","url":"http://www.webmin.com/"},{"type":"WEB","url":"http://www.webmin.com/changes.html"}],"affected":[{"package":{"name":"webmin","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/webmin?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.860-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0376.json"}},{"package":{"name":"webmin","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/webmin?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.860-1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0376.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}