UbuntuUpdates.org

Package "moodle"

Name: moodle

Description:

course management system for online learning
Latest version: 1.9.9.dfsg2-6
Release: precise (12.04)
Level: base
Repository: universe
Homepage: http://www.moodle.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "moodle"

All arch deb package
APT INSTALL

Other versions of "moodle" in Precise

No other version of this package is available in the Precise release.

Changelog

Version: 1.9.9.dfsg2-6 2012-04-15 08:06:56 UTC

moodle (1.9.9.dfsg2-6) unstable; urgency=high

  * Backporting security fixes from Moodle 1.9.17
     - MSA-12-00013 DB activtity export does not respect groups
         (CVE-2012-1155, closes: #668411)

 -- Tomasz Muras Thu, 12 Apr 2012 21:55:48 +0100
668411 CVE-2012-1155: MSA-12-0013: Database activity export permission issue - Debian Bug report logs

Version: *DELETED* 2012-03-06 10:44:39 UTC
No changelog for deleted or moved packages.

Version: 1.9.9.dfsg2-5 2012-03-01 05:03:24 UTC

moodle (1.9.9.dfsg2-5) unstable; urgency=high

  * Backporting security fixes from Moodle 1.9.15 and 1.9.16
    (closes: #652235)
     - MSA-11-0054 Personal information leak
     - MSA-11-0045 Potential to masquerade through MNet (CVE-2011-4584)
     - MSA-11-0046 Insecure authentication transmission (CVE-2011-4585)
     - MSA-11-0047 Possible injection attack in Calendar (CVE-2011-4586)
     - MSA-11-0048 Password loss issue (CVE-2011-4587)
     - MSA-11-0049 Network restriction ineffective with MNet (CVE-2011-4588)
     - MSA-12-0007 Email injection prevention (CVE-2012-0796)
     - MSA-12-0006 Additional email address validation (CVE-2012-0795)
     - MSA-12-0005 Encryption enhancement (CVE-2012-0794)
     - MSA-12-0004 Added profile image security (CVE-2012-0793)
     - MSA-12-0003 Added password protection
     - MSA-12-0002 Personal information leak, previously MSA-11-0040
       (CVE-2011-4308 and CVE-2012-0792)
     - MSA-12-0001 Recaptcha transmission consistency issue

 -- Tomasz Muras Mon, 27 Feb 2012 21:14:48 +0000
Source diff to previous version
652235 Multiple new security issues - Debian Bug report logs
CVE-2012-0796 MSA-12-0007: Email injection prevention
CVE-2012-0795 MSA-12-0006: Additional email address validation
CVE-2012-0794 MSA-12-0005: Encryption enhancement
CVE-2012-0793 MSA-12-0004: Added profile image security
CVE-2011-4308 MSA-11-0040
CVE-2012-0792 MSA-12-0002: Personal information leak

Version: 1.9.9.dfsg2-4 2011-12-18 16:43:06 UTC

moodle (1.9.9.dfsg2-4) unstable; urgency=high

  * Backporting security fixes from Moodle 1.9.13 and 1.9.14
      - MSA-11-0026 Fields in user upload CSV not being escaped (MDL-28360)
      - MSA-11-0025 Group names in user upload CSV not being escaped (MDL-28197)
      - MSA-11-0024 Recaptcha images were being authenticated
          from an older server (MDL-27889) (closes: #638935)
      - MSA-11-0020 Continue links in error messages can lead offsite (MDL-27464)
      - MSA-11-0038 Database injection protection strengthened (MDL-29033)
      - MSA-11-0037 Course section editing injection vulnerability (MDL-28722)
      - MSA-11-0036 Messaging refresh vulnerability (MDL-29311)
      - MSA-11-0032 MNET SSL validation issue (MDL-29148)
      - MSA-11-0031 Forms API constant issue (MDL-23872)
  * Make sure that smarty & yui symlinks are correct (closes: 603255,614712)

 -- Tomasz Muras Fri, 28 Oct 2011 13:29:14 +0100
638935 moodle: Recaptcha not working - Debian Bug report logs

Version: *DELETED* 2011-12-18 14:33:04 UTC
No changelog for deleted or moved packages.


About   -   Send Feedback to @ubuntu_updates