drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in Moodle
Name: |
Mehrere Probleme in Moodle |
|
ID: |
FEDORA-2012-8325 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 16 |
|
Datum: |
Sa, 2. Juni 2012, 08:57 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2353
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2354
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2355
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2356
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2357
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2358
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2359
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2360
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2361
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2362
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2363
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2364
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2365
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2366
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2367 |
|
Applikationen: |
Moodle |
|
Originalnachricht |
Name : moodle Product : Fedora 16 Version : 2.0.9 Release : 1.fc16 URL : http://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities.
------------------------------------------------------------------------------- - Update Information:
CVE-2012-2353 MSA-12-0024: Hidden information access issue
CVE-2012-2354 MSA-12-0025: Personal communication access issue
CVE-2012-2355 MSA-12-0026: Quiz capability issue
CVE-2012-2356 MSA-12-0027: Question bank capability issues
CVE-2012-2357 MSA-12-0028: Insecure authentication issue
CVE-2012-2358 MSA-12-0029: Information editing access issue
CVE-2012-2359 MSA-12-0030: Capability manipulation issue
CVE-2012-2360 MSA-12-0031: Cross-site scripting vulnerability in Wiki
CVE-2012-2361 MSA-12-0032: Cross-site scripting vulnerability in Web services
CVE-2012-2362 MSA-12-0033: Cross-site scripting vulnerability in Blog
CVE-2012-2363 MSA-12-0034: Potential SQL injection issue
CVE-2012-2364 MSA-12-0035: Cross-site scripting vulnerability in "download all"
CVE-2012-2365 MSA-12-0036: Cross-site scripting vulnerability in category identifier
CVE-2012-2366 MSA-12-0037: Write access issue in Database activity module
CVE-2012-2367 MSA-12-0038: Calendar event write permission issue Correct CAS unbundling. Drop bundled language packs. New upstreams, multiple vulnerabilities. ------------------------------------------------------------------------------- - ChangeLog:
* Wed May 23 2012 Jon Ciesla <limburgher@gmail.com> - 2.0.9-1 - 2.0.9, security fixes, BZ 824481. * Wed May 9 2012 Jon Ciesla <limburgher@gmail.com> - 2.0.8-2 - Dropped bundled language packs, BZ 748958. * Mon Apr 2 2012 Jon Ciesla <limburgher@gmail.com> - 2.0.8-1 - New upstream, BZ 809226. * Tue Jan 24 2012 Jon Ciesla <limburgher@gmail.com> - 2.0.7-1 - New upstream, BZ 783534. * Fri Dec 9 2011 Jon Ciesla <limburgher@gmail.com> - 2.0.6-1 - New upstream, BZ 761249. * Fri Oct 21 2011 Jon Ciesla <limb@jcomserv.net> - 2.0.5-1 - New upstream, BZ 747445. ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update moodle' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|