[Secure-testing-commits] r35508 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Jul 16 16:27:03 UTC 2015
Author: jmm
Date: 2015-07-16 16:27:03 +0000 (Thu, 16 Jul 2015)
New Revision: 35508
Modified:
data/CVE/list
Log:
moodle fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-16 15:26:25 UTC (rev 35507)
+++ data/CVE/list 2015-07-16 16:27:03 UTC (rev 35508)
@@ -5670,12 +5670,12 @@
TODO: check
CVE-2015-3275 [Javascript injection in SCORM module]
RESERVED
- - moodle <unfixed> (bug #792242)
+ - moodle 2.7.9+dfsg-1 (bug #792242)
[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50614
CVE-2015-3274 [Possible XSS through custom text profile fields in Web Services]
RESERVED
- - moodle <unfixed> (bug #792242)
+ - moodle 2.7.9+dfsg-1 (bug #792242)
[squeeze] - moodle <not-affected> (Only similar function looks like the fixed version)
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50130
CVE-2015-3273 [Capability 'mod/forum:canposttomygroups' is not respected when using 'Post a copy to all groups' in forum]
@@ -5684,7 +5684,7 @@
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50220
CVE-2015-3272 [Possible phishing when redirecting to external site using referer header]
RESERVED
- - moodle <unfixed> (bug #792242)
+ - moodle 2.7.9+dfsg-1 (bug #792242)
[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50688
CVE-2015-3271
More information about the Secure-testing-commits
mailing list