Red Hat Bugzilla – Bug 476709
moodle: command injection via TeX filter (texed.php)
Last modified: 2010-03-22 11:45:45 EDT
A shell command execution flaw was reported for Moodle 1.9.3 affecting "TeX Notation" filter (filter/tex/texed.php). According to the advisory and upstream commit message, this requires register_globals to be enabled and magic_quotes_gpc to be disabled. Due to that, upstream is reportedly treating this as low-impact issue and should include some more generic protection against flaws related to the enabled register_globals.
Upstream bug (currently private):
Should not affect 1.8.7
Current 1.9.3 in Fedora is a weekly snapshot from 11/7/08 that includes this patch.
(In reply to comment #1)
> Current 1.9.3 in Fedora is a weekly snapshot from 11/7/08 that includes this
Patch listed in comment #0 was committed upstream on Wed Nov 12 03:35:14 2008 WST, that should be after current Fedora snapshot. I checked the file in 1.9.3-3 srpm again, and it does not seem to be included. Again, please correct me if I'm wrong.
Dang, I should get more sleep. :) The patches above are partially applied. I'll create a custom patch to do the rest.
moodle-1.9.3-4.fc10 has been submitted as an update for Fedora 10.
moodle-1.9.3-4.fc9 has been submitted as an update for Fedora 9.
moodle-1.9.3-4.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
moodle-1.9.3-4.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.