Fedora 36: moodle 2022-89bfefbe48 | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-89bfefbe48
2022-05-27 01:08:53.900404
--------------------------------------------------------------------------------

Name        : moodle
Product     : Fedora 36
Version     : 3.11.7
Release     : 1.fc36
URL         : https://moodle.org/
Summary     : A Course Management System
Description :
Moodle is a course management system (CMS) - a free, Open Source software
package designed using sound pedagogical principles, to help educators create
effective online learning communities.

--------------------------------------------------------------------------------
Update Information:

Multiple CVE fixes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 18 2022 Gwyn Ciesla  - 3.11.7-1
- 3.11.7
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2087632 - CVE-2022-30596 moodle: Stored XSS in assignment bulk marker allocation form via user ID number [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2087632
  [ 2 ] Bug #2087633 - CVE-2022-30597 moodle: Description field hidden by user policies (hiddenuserfields) is still visible [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2087633
  [ 3 ] Bug #2087634 - CVE-2022-30599 moodle: SQL injection risk in badge award criteria [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2087634
  [ 4 ] Bug #2087635 - CVE-2022-30600 moodle: Failed login attempts counted incorrectly [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2087635
  [ 5 ] Bug #2087636 - CVE-2022-30598 moodle: global search results reveal authors of content unexpectedly for some activities [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2087636
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-89bfefbe48' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 36: moodle 2022-89bfefbe48

May 26, 2022
Multiple CVE fixes.

Summary

Moodle is a course management system (CMS) - a free, Open Source software

package designed using sound pedagogical principles, to help educators create

effective online learning communities.

Update Information:

Multiple CVE fixes.

Change Log

* Wed May 18 2022 Gwyn Ciesla - 3.11.7-1 - 3.11.7

References

[ 1 ] Bug #2087632 - CVE-2022-30596 moodle: Stored XSS in assignment bulk marker allocation form via user ID number [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2087632 [ 2 ] Bug #2087633 - CVE-2022-30597 moodle: Description field hidden by user policies (hiddenuserfields) is still visible [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2087633 [ 3 ] Bug #2087634 - CVE-2022-30599 moodle: SQL injection risk in badge award criteria [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2087634 [ 4 ] Bug #2087635 - CVE-2022-30600 moodle: Failed login attempts counted incorrectly [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2087635 [ 5 ] Bug #2087636 - CVE-2022-30598 moodle: global search results reveal authors of content unexpectedly for some activities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2087636

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-89bfefbe48' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : moodle
Product : Fedora 36
Version : 3.11.7
Release : 1.fc36
URL : https://moodle.org/
Summary : A Course Management System

Related News

Parrot OS 5.2 Tightens Security, Better TOR Bridges Support

Tails 5.9 Fixes Numerous Bugs and Enhances Security Measures

Modern Intel Processors Will Now Run Better Under Linux

KDE Kicks Off August With More Desktop Bug Fixes

News

Advisories

HOWTOs

Features

Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack
ManageEngine Vulnerability Manager Plus: How To Protect Your Enterprise from Security Vulnerabilities
High-Impact DoS, Arbitrary Code Execution, Spoofing Bugs Fixed in Thunderbird 102.9.0
A Guide to Business Cybersecurity: Common Digital Attacks and Precautions
New Linux IceFire Ransomware Variant Discovered: What You Need to Know to Secure Your Systems

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy