The upstream 2.7.1, 2.6.4, 2.5.7, and 2.4.11 Moodle releases fix a number of security issues: https://moodle.org/mod/forum/discuss.php?d=263858 Details of these issues will be available in one week.
Created moodle tracking bugs for this issue: Affects: fedora-all [bug 1120979] Affects: epel-all [bug 1120980]
Details of each issue are now public: http://seclists.org/oss-sec/2014/q3/195