Gentoo Security Advisory GLSA 200502-12 (Webmin)

Summary
The remote host is missing updates announced in advisory GLSA 200502-12.
Solution
Webmin users should delete any old shared Webmin binary package as soon as possible. They should also consider their buildhost root password potentially exposed and follow proper audit procedures. If you plan to build binary packages, you should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-admin/webmin-1.170-r3' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200502-12 http://bugs.gentoo.org/show_bug.cgi?id=77731
Insight
Portage-built Webmin binary packages accidentally include a file containing the local encrypted root password.