Bug#691142: pu: package moodle/1.9.9.dfsg2-2.1+squeeze4
Control: tags -1 + squeeze confirmed
On Mon, 2012-10-22 at 08:28 +0200, Didier Raboud wrote:
> moodle (1.9.9.dfsg2-2.1+squeeze4) stable; urgency=low
>
> * Minor security updates.
> * Backporting security fixes from MOODLE_19_STABLE:
> - CVE-2012-1155 - MSA-12-0013: database activity module entries exporting
> does not respect separate groups (Closes: #668411).
> - CVE-2012-2362 - MSA-12-0033: XSS bug in blog/index.php in IE.
> - CVE-2012-2363 - MSA-12-0034: Stored SQL Injection in calendar.
> - CVE-2012-2367 - MSA-12-0038: Calendar New Entry still shows and works
> for roles preventing calendar entry. (Closes: #674163)
Please go ahead; thanks.
Regards,
Adam
Reply to: