1164071 – (CVE-2014-7830, CVE-2014-7831, CVE-2014-7832, CVE-2014-7833, CVE-2014-7834, CVE-2014-7835, CVE-2014-7836, CVE-2014-7837, CVE-2014-7838, CVE-2014-7845, CVE-2014-7846, CVE-2014-7847, CVE-2014-7848) CVE-2014-7830 CVE-2014-7845 CVE-2014-7831 CVE-2014-7832 CVE-2014-7833 CVE-2014-7846 CVE-2014-7847 CVE-2014-7834 CVE-2014-7848 CVE-2014-7835 CVE-2014-7836 CVE-2014-7837 CVE-2014-7838 moodle: security issues fixed in versions 2.7.3, 2.6.6 and 2.5.9

Bug 1164071 (CVE-2014-7830, CVE-2014-7831, CVE-2014-7832, CVE-2014-7833, CVE-2014-7834, CVE-2014-7835, CVE-2014-7836, CVE-2014-7837, CVE-2014-7838, CVE-2014-7845, CVE-2014-7846, CVE-2014-7847, CVE-2014-7848) - CVE-2014-7830 CVE-2014-7845 CVE-2014-7831 CVE-2014-7832 CVE-2014-7833 CVE-2014-7846 CVE-2014-7847 CVE-2014-7834 CVE-2014-7848 CVE-2014-7835 CVE-2014-7836 CVE-2014-7837 CVE-2014-7838 moodle: security issues fixed in versions 2.7.3, 2.6.6 and 2.5.9

Summary: CVE-2014-7830 CVE-2014-7845 CVE-2014-7831 CVE-2014-7832 CVE-2014-7833 CVE-201...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2014-7830, CVE-2014-7831, CVE-2014-7832, CVE-2014-7833, CVE-2014-7834, CVE-2014-7835, CVE-2014-7836, CVE-2014-7837, CVE-2014-7838, CVE-2014-7845, CVE-2014-7846, CVE-2014-7847, CVE-2014-7848
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1164072 1164073
Blocks:
TreeView+	depends on / blocked

Reported:	2014-11-14 03:24 UTC by Murray McAllister
Modified:	2019-09-29 13:23 UTC (History)
CC List:	2 users (show)
Fixed In Version:	moodle 2.7.3, moodle 2.6.6, moodle 2.5.9
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-08-22 15:37:25 UTC
Embargoed:

Attachments	(Terms of Use)

Description Murray McAllister 2014-11-14 03:24:05 UTC

Multiple security issues have been fixed in the Moodle 2.7.3, 2.6.6, and 2.5.9 releases:

https://moodle.org/mod/forum/discuss.php?d=274730

As per the above link, details of what those issues are will be published at a later date.

Comment 1 Murray McAllister 2014-11-14 03:25:39 UTC

Created moodle tracking bugs for this issue:

Affects: fedora-all [bug 1164072]
Affects: epel-6 [bug 1164073]

Comment 2 Murray McAllister 2014-11-18 04:10:14 UTC

These issues were assigned CVE-2014-7830, CVE-2014-7845, CVE-2014-7831, CVE-2014-7832, CVE-2014-7833, CVE-2014-7846, CVE-2014-7847, CVE-2014-7834, CVE-2014-7848, CVE-2014-7835, CVE-2014-7836, CVE-2014-7837, and CVE-2014-7838. 

Refer to http://www.openwall.com/lists/oss-security/2014/11/17/11 for full details.

Note You need to log in before you can comment on or make changes to this bug.