Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 533
Alerts This Week
Warning Icon 1 533

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is application sandboxing truly safe?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/155-is-application-sandboxing-truly-safe?task=poll.vote&format=json
155
radio
0
[{"id":500,"title":"Malware still escapes container walls.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":501,"title":"Supply chains corrupt trusted packages.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":502,"title":"Convenience consistently compromises strict security.","votes":1,"type":"x","order":3,"pct":100,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 38 articles for you...
89

Fedora 40: FEDORA-2025-b23cb4c239 critical: moodle remote code execution

Latest updates.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-b23cb4c239 2025-04-23 01:59:45.656548+00:00 -------------------------------------------------------------------------------- Name : moodle Product : Fedora 40 Version : 4.3.12 Release : 1.fc40 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. -------------------------------------------------------------------------------- Update Information: Latest updates. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 14 2025 Gwyn Ciesla - 4.3.12-1 - 4.3.12 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2361645 - CVE-2025-3647 moodle: IDOR when accessing the cohorts report [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361645 [ 2 ] Bug #2361648 - CVE-2025-3645 moodle: IDOR in messaging web service allows access to some user details [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361648 [ 3 ] Bug #2361651 - CVE-2025-3644 moodle: AJAX section delete does not respect course_can_delete_section() [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361651 [ 4 ] Bug #2361654 - CVE-2025-3643 moodle: Reflected XSS risk in policy tool [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361654 [ 5 ] Bug #2361657 - CVE-2025-3642 moodle: Authenticated remote code execution risk in the Moodle LMS EQUELLA repository [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361657 [ 6 ] Bug #2361660 - CVE-2025-3641 moodle: Authenticated remote code execution risk in the Moodle LMS Dropbox repository [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361660 [ 7 ] Bug #2361663 - CVE-2025-3638 moodle: CSRF risk in Brickfield tool's analysis request action [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361663 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-b23cb4c239' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Explore the latest enhancements for Moodle on Fedora 40, focusing on significant challenges and vulnerabilities that need attention.. Fedora Moodler Security Risks Updates. . LinuxSecurity.com Team

Calendar%202 Apr 23, 2025 Fedora
89

Fedora 42: moodle 2025-ccb1a36fcb critical: IDOR security issues

Latest updates.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-ccb1a36fcb 2025-04-23 01:45:48.555038+00:00 -------------------------------------------------------------------------------- Name : moodle Product : Fedora 42 Version : 4.5.4 Release : 1.fc42 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. -------------------------------------------------------------------------------- Update Information: Latest updates. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 14 2025 Gwyn Ciesla - 4.5.4-1 - 4.5.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2361647 - CVE-2025-3647 moodle: IDOR when accessing the cohorts report [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361647 [ 2 ] Bug #2361650 - CVE-2025-3645 moodle: IDOR in messaging web service allows access to some user details [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361650 [ 3 ] Bug #2361653 - CVE-2025-3644 moodle: AJAX section delete does not respect course_can_delete_section() [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361653 [ 4 ] Bug #2361656 - CVE-2025-3643 moodle: Reflected XSS risk in policy tool [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361656 [ 5 ] Bug #2361659 - CVE-2025-3642 moodle: Authenticated remote code execution risk in the Moodle LMS EQUELLA repository [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361659 [ 6 ] Bug #2361662 - CVE-2025-3641 moodle: Authenticated remote code execution risk in the Moodle LMS Dropbox repository [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361662 [ 7 ] Bug #2361665 - CVE-2025-3638 moodle: CSRF risk in Brickfield tool's analysis request action [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361665 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-ccb1a36fcb' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Fedora 42's launch brings crucial enhancements to Moodle, boosting security and functionality. Vulnerabilities have been fixed, improving user experience and navigation.. Moodle Update, Fedora 42, Open Source CMS, Online Learning Security. . LinuxSecurity.com Team

Calendar%202 Apr 23, 2025 Fedora
89

Fedora 41: FEDORA-2024-ddb5f7c0a3 critical: moodle XSS & DoS Risks

Multiple CVE fixes.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-ddb5f7c0a3 2024-12-27 01:20:43.467440+00:00 -------------------------------------------------------------------------------- Name : moodle Product : Fedora 41 Version : 4.4.5 Release : 1.fc41 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. -------------------------------------------------------------------------------- Update Information: Multiple CVE fixes. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 17 2024 Gwyn Ciesla - 4.4.5-1 - 4.4.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2332796 - CVE-2024-55648 moodle: Potential denial of service risk due to guest sessions' longer timeout period [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2332796 [ 2 ] Bug #2332812 - CVE-2024-55647 moodle: Reflected XSS in question bank filter [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2332812 [ 3 ] Bug #2332814 - CVE-2024-55646 moodle: Database activity issue in separate groups mode, for users not in a group [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2332814 [ 4 ] Bug #2332824 - CVE-2024-55645 moodle: Email change confirmation token available via preference [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2332824 [ 5 ] Bug #2332826 - CVE-2024-55644 moodle: Tag index page displays other users tagged with the selected tag [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2332826 [ 6 ] Bug #2332828 - CVE-2024-55643 moodle: Unprotected access to sensitive information via learning plan webservice [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2332828 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ddb5f7c0a3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Enhancements for Moodle in Fedora 41 encompass various CVE resolutions aimed at addressing security vulnerabilities. Comprehensive installation instructions are included.. Fedora 41 moodle updates, security fix moodle, online learning CMS, course management security advisory. . LinuxSecurity.com Team

Calendar%202 Dec 27, 2024 Fedora
89

Fedora 37 Update: Addressing Critical Moodle Remote Code Execution Issues

Latest updates. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-a7b0d27d18 2023-10-19 01:34:44.719121 -------------------------------------------------------------------------------- Name : moodle Product : Fedora 37 Version : 4.1.6 Release : 1.fc37 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. -------------------------------------------------------------------------------- Update Information: Latest updates -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 10 2023 Gwyn Ciesla - 4.1.6-1 - 4.1.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2244896 - CVE-2023-5539 moodle: Authenticated remote code execution risk in Lesson [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244896 [ 2 ] Bug #2244899 - CVE-2023-5540 moodle: authenticated remote code execution risk in IMSCP [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244899 [ 3 ] Bug #2244901 - CVE-2023-5541 moodle: XSS risk when using CSV grade import method [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244901 [ 4 ] Bug #2244903 - CVE-2023-5542 moodle: Students can view other users in "Only see own membership" groups [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244903 [ 5 ] Bug #2244905 - CVE-2023-5543 moodle: Duplicating a BigBlueButton activity assigns the same meeting ID [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244905 [ 6 ] Bug #2244907 - CVE-2023-5544 moodle: Stored XSS and potential IDOR risk in Wiki comments [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244907 [ 7 ] Bug #2244909 - CVE-2023-5545 moodle: Auto-populated H5P author name causes a potential information leak [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244909 [ 8 ] Bug #2244912 - CVE-2023-5546 moodle: Stored XSS in quiz grading report via user ID number [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244912 [ 9 ] Bug #2244916 - CVE-2023-5547 moodle: XSS risk when previewing data in course upload tool [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244916 [ 10 ] Bug #2244918 - CVE-2023-5548 moodle: Cache poisoning risk with endpoint revision numbers [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244918 [ 11 ] Bug #2244920 - CVE-2023-5549 moodle: Insufficient capability checks when updating the parent of a course category [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244920 [ 12 ] Bug #2244922 - CVE-2023-5550 moodle: RCE due to LFI risk in some misconfigured shared hosting environments [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2244922 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-a7b0d27d18' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ ListGuidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The recent update of Moodle 4.1.6 for Fedora 37 mitigates various vulnerabilities and security concerns, along with detailed guidance for installation.. Fedora Security, Moodle Updates, Course Management System, Security Risks, Remote Code Execution. . LinuxSecurity.com Team

Calendar%202 Oct 19, 2023 Fedora
89

Fedora 36: FEDORA-2023-d9c13996b2 Moderate: Moodle XSS And SQL Injection

Fixes for multiple CVEs.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-d9c13996b2 2023-03-30 01:14:14.931163 --------------------------------------------------------------------------------Name : moodle Product : Fedora 36 Version : 3.11.13 Release : 1.fc36 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. --------------------------------------------------------------------------------Update Information: Fixes for multiple CVEs. --------------------------------------------------------------------------------ChangeLog: * Tue Mar 21 2023 Gwyn Ciesla - 3.11.13-1 - 3.11.13 --------------------------------------------------------------------------------References: [ 1 ] Bug #2180072 - CVE-2023-28329 moodle: Authenticated SQL injection via availability check [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180072 [ 2 ] Bug #2180078 - CVE-2023-28330 moodle: Authenticated arbitrary file read through malformed backup file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180078 [ 3 ] Bug #2180080 - CVE-2023-28331 moodle: XSS risk when outputting database activity filter data [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180080 [ 4 ] Bug #2180082 - CVE-2023-28332 moodle: Algebra filter XSS when filter is misconfigured [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180082 [ 5 ] Bug #2180084 - CVE-2023-28333 moodle: Pix helper potential Mustache code injection risk [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180084 [ 6 ] Bug #2180092 - CVE-2023-28336 moodle: Teacher can access names of users they do not have permission to access [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180092 [ 7 ] Bug #2180098 - CVE-2023-1402 moodle: Course participation report shows roles the user should not see [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2180098 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-d9c13996b2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . A variety of patches have been released for Moodle on Fedora 36 aimed at mitigating security vulnerabilities, such as SQL injection flaws and cross-site scripting (XSS) threats.. Fedora Security Advisories, Moodle Security Updates, SQL Injection Fixes. . LinuxSecurity.com Team

Calendar%202 Mar 30, 2023 Fedora
89

Fedora 35 Moodle Security Update: Multiple Issues Resolved

Fixes for multiple CVEs. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-cb7084ae1c 2022-12-07 01:42:32.810680 --------------------------------------------------------------------------------Name : moodle Product : Fedora 35 Version : 3.11.11 Release : 1.fc35 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. --------------------------------------------------------------------------------Update Information: Fixes for multiple CVEs --------------------------------------------------------------------------------ChangeLog: * Mon Nov 28 2022 Gwyn Ciesla - 3.11.11-1 - 3.11.11 --------------------------------------------------------------------------------References: [ 1 ] Bug #2144705 - CVE-2021-23414 CVE-2022-45149 CVE-2022-45150 CVE-2022-45151 CVE-2022-45152 moodle: various flaws [fedora-35] https://bugzilla.redhat.com/show_bug.cgi?id=2144705 [ 2 ] Bug #2144706 - CVE-2021-23414 CVE-2022-45149 CVE-2022-45150 CVE-2022-45151 CVE-2022-45152 moodle: various flaws [fedora-36] https://bugzilla.redhat.com/show_bug.cgi?id=2144706 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-cb7084ae1c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Essential updates for Moodle on Fedora 35 tackling various security vulnerabilities while improving overall system stability.. Fedora Security, Moodle Update, Course Management, Online Learning Fixes. . LinuxSecurity.com Team

Calendar%202 Dec 07, 2022 Fedora
89

Fedora 35: FEDORA-2022-50c091d963 moderate security: Moodle XSS issue

Latest update.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-50c091d963 2022-09-21 01:21:16.550072 --------------------------------------------------------------------------------Name : moodle Product : Fedora 35 Version : 3.11.10 Release : 1.fc35 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. --------------------------------------------------------------------------------Update Information: Latest update. --------------------------------------------------------------------------------ChangeLog: * Mon Sep 12 2022 Gwyn Ciesla - 3.11.10-1 - 3.11.10 --------------------------------------------------------------------------------References: [ 1 ] Bug #2126857 - CVE-2021-36568 www-apps/moodle: XSS via crafted topic fields https://bugzilla.redhat.com/show_bug.cgi?id=2126857 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-50c091d963' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines:https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . The recent Fedora 35 patch tackles a vulnerability in Moodle and offers crucial guidance for system admins to execute the upgrade.. Fedora Moodle Update, Open Source Course Management, Upgrade Instructions. . LinuxSecurity.com Team

Calendar%202 Sep 20, 2022 Fedora
89

Fedora: 2022-1c77803b43 Important Security Update for Moodle XSS Fix

Latest update.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-1c77803b43 2022-09-21 01:11:30.390293 --------------------------------------------------------------------------------Name : moodle Product : Fedora 36 Version : 3.11.10 Release : 1.fc36 URL : https://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. --------------------------------------------------------------------------------Update Information: Latest update. --------------------------------------------------------------------------------ChangeLog: * Mon Sep 12 2022 Gwyn Ciesla - 3.11.10-1 - 3.11.10 --------------------------------------------------------------------------------References: [ 1 ] Bug #2126857 - CVE-2021-36568 www-apps/moodle: XSS via crafted topic fields https://bugzilla.redhat.com/show_bug.cgi?id=2126857 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-1c77803b43' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines:https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Recent Fedora patch for Moodle resolves critical XSS vulnerability. Update now to safeguard your e-learning platform.. Fedora Moodle Update, XSS Protection, Course Management System. . LinuxSecurity.com Team

Calendar%202 Sep 20, 2022 Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is application sandboxing truly safe?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/155-is-application-sandboxing-truly-safe?task=poll.vote&format=json
155
radio
0
[{"id":500,"title":"Malware still escapes container walls.","votes":0,"type":"x","order":1,"pct":0,"resources":[]},{"id":501,"title":"Supply chains corrupt trusted packages.","votes":0,"type":"x","order":2,"pct":0,"resources":[]},{"id":502,"title":"Convenience consistently compromises strict security.","votes":1,"type":"x","order":3,"pct":100,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200