Bug 1120978 (CVE-2014-3541, CVE-2014-3542, CVE-2014-3543, CVE-2014-3544, CVE-2014-3545, CVE-2014-3546, CVE-2014-3547, CVE-2014-3548, CVE-2014-3549, CVE-2014-3550, CVE-2014-3551, CVE-2014-3552, CVE-2014-3553)

Summary: moodle: security issues fixed in the upstream 2.7.1, 2.6.4, 2.5.7, and 2.4.11 releases
Product: [Other] Security Response Reporter: Murray McAllister <mmcallis>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: gwync, vdanen
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: moodle 2.7.1, moodle 2.6.4, moodle 2.5.7, moodle 2.4.11 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-07-30 07:02:53 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1120979, 1120980    
Bug Blocks:    

Description Murray McAllister 2014-07-18 05:20:42 UTC 
The upstream 2.7.1, 2.6.4, 2.5.7, and 2.4.11 Moodle releases fix a number of security issues:

https://moodle.org/mod/forum/discuss.php?d=263858

Details of these issues will be available in one week.
Comment 1 Murray McAllister 2014-07-18 05:21:46 UTC 
Created moodle tracking bugs for this issue:

Affects: fedora-all [bug 1120979]
Affects: epel-all [bug 1120980]
Comment 2 Murray McAllister 2014-07-21 06:50:26 UTC 
Details of each issue are now public:

http://seclists.org/oss-sec/2014/q3/195