UbuntuUpdates.org

Package "moodle"

Name: moodle

Description:

course management system for online learning

Latest version: 1.9.9.dfsg2-6
Release: precise (12.04)
Level: base
Repository: universe
Homepage: http://www.moodle.org/

Links


Download "moodle"


Other versions of "moodle" in Precise

No other version of this package is available in the Precise release.

Changelog

Version: 1.9.9.dfsg2-6 2012-04-15 08:06:56 UTC

moodle (1.9.9.dfsg2-6) unstable; urgency=high

  * Backporting security fixes from Moodle 1.9.17
     - MSA-12-00013 DB activtity export does not respect groups
         (CVE-2012-1155, closes: #668411)

 -- Tomasz Muras Thu, 12 Apr 2012 21:55:48 +0100

668411 CVE-2012-1155: MSA-12-0013: Database activity export permission issue - Debian Bug report logs

Version: *DELETED* 2012-03-06 10:44:39 UTC
No changelog for deleted or moved packages.

Version: 1.9.9.dfsg2-5 2012-03-01 05:03:24 UTC

moodle (1.9.9.dfsg2-5) unstable; urgency=high

  * Backporting security fixes from Moodle 1.9.15 and 1.9.16
    (closes: #652235)
     - MSA-11-0054 Personal information leak
     - MSA-11-0045 Potential to masquerade through MNet (CVE-2011-4584)
     - MSA-11-0046 Insecure authentication transmission (CVE-2011-4585)
     - MSA-11-0047 Possible injection attack in Calendar (CVE-2011-4586)
     - MSA-11-0048 Password loss issue (CVE-2011-4587)
     - MSA-11-0049 Network restriction ineffective with MNet (CVE-2011-4588)
     - MSA-12-0007 Email injection prevention (CVE-2012-0796)
     - MSA-12-0006 Additional email address validation (CVE-2012-0795)
     - MSA-12-0005 Encryption enhancement (CVE-2012-0794)
     - MSA-12-0004 Added profile image security (CVE-2012-0793)
     - MSA-12-0003 Added password protection
     - MSA-12-0002 Personal information leak, previously MSA-11-0040
       (CVE-2011-4308 and CVE-2012-0792)
     - MSA-12-0001 Recaptcha transmission consistency issue

 -- Tomasz Muras Mon, 27 Feb 2012 21:14:48 +0000

Source diff to previous version
652235 Multiple new security issues - Debian Bug report logs
CVE-2012-0796 MSA-12-0007: Email injection prevention
CVE-2012-0795 MSA-12-0006: Additional email address validation
CVE-2012-0794 MSA-12-0005: Encryption enhancement
CVE-2012-0793 MSA-12-0004: Added profile image security
CVE-2011-4308 MSA-11-0040
CVE-2012-0792 MSA-12-0002: Personal information leak

Version: 1.9.9.dfsg2-4 2011-12-18 16:43:06 UTC

moodle (1.9.9.dfsg2-4) unstable; urgency=high

  * Backporting security fixes from Moodle 1.9.13 and 1.9.14
      - MSA-11-0026 Fields in user upload CSV not being escaped (MDL-28360)
      - MSA-11-0025 Group names in user upload CSV not being escaped (MDL-28197)
      - MSA-11-0024 Recaptcha images were being authenticated
          from an older server (MDL-27889) (closes: #638935)
      - MSA-11-0020 Continue links in error messages can lead offsite (MDL-27464)
      - MSA-11-0038 Database injection protection strengthened (MDL-29033)
      - MSA-11-0037 Course section editing injection vulnerability (MDL-28722)
      - MSA-11-0036 Messaging refresh vulnerability (MDL-29311)
      - MSA-11-0032 MNET SSL validation issue (MDL-29148)
      - MSA-11-0031 Forms API constant issue (MDL-23872)
  * Make sure that smarty & yui symlinks are correct (closes: 603255,614712)

 -- Tomasz Muras Fri, 28 Oct 2011 13:29:14 +0100

638935 moodle: Recaptcha not working - Debian Bug report logs

Version: *DELETED* 2011-12-18 14:33:04 UTC
No changelog for deleted or moved packages.



About   -   Send Feedback to @ubuntu_updates