openSUSE Security Update: moodle security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0212-1 Rating: low References: #591850 Cross-References: CVE-2010-1613 CVE-2010-1614 CVE-2010-1615 CVE-2010-1616 CVE-2010-1617 CVE-2010-1618 CVE-2010-1619 Affected Products: openSUSE 11.1 openSUSE 11.0 ______________________________________________________________________________ An update that fixes 7 vulnerabilities is now available. It includes four new package versions. Description: Moodle version 1.9.8 fixes several security issues including cross-site-scripting (XSS) and SQL injection bugs (CVE-2010-1613, CVE-2010-1614, CVE-2010-1615, CVE-2010-1616, CVE-2010-1617 CVE-2010-1618, CVE-2010-1619). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.1: zypper in -t patch moodle-2387 - openSUSE 11.0: zypper in -t patch moodle-2387 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.1 (noarch src) [New Version: 1.9.8]: moodle-1.9.8-0.1.1 - openSUSE 11.1 (noarch) [New Version: 1.9.8]: moodle-af-1.9.8-0.1.1 moodle-ar-1.9.8-0.1.1 moodle-be-1.9.8-0.1.1 moodle-bg-1.9.8-0.1.1 moodle-bs-1.9.8-0.1.1 moodle-ca-1.9.8-0.1.1 moodle-cs-1.9.8-0.1.1 moodle-da-1.9.8-0.1.1 moodle-de-1.9.8-0.1.1 moodle-de_du-1.9.8-0.1.1 moodle-el-1.9.8-0.1.1 moodle-es-1.9.8-0.1.1 moodle-et-1.9.8-0.1.1 moodle-eu-1.9.8-0.1.1 moodle-fa-1.9.8-0.1.1 moodle-fi-1.9.8-0.1.1 moodle-fr-1.9.8-0.1.1 moodle-ga-1.9.8-0.1.1 moodle-gl-1.9.8-0.1.1 moodle-he-1.9.8-0.1.1 moodle-hi-1.9.8-0.1.1 moodle-hr-1.9.8-0.1.1 moodle-hu-1.9.8-0.1.1 moodle-id-1.9.8-0.1.1 moodle-is-1.9.8-0.1.1 moodle-it-1.9.8-0.1.1 moodle-ja-1.9.8-0.1.1 moodle-ka-1.9.8-0.1.1 moodle-km-1.9.8-0.1.1 moodle-kn-1.9.8-0.1.1 moodle-ko-1.9.8-0.1.1 moodle-lt-1.9.8-0.1.1 moodle-lv-1.9.8-0.1.1 moodle-mi_tn-1.9.8-0.1.1 moodle-ms-1.9.8-0.1.1 moodle-nl-1.9.8-0.1.1 moodle-nn-1.9.8-0.1.1 moodle-no-1.9.8-0.1.1 moodle-pl-1.9.8-0.1.1 moodle-pt-1.9.8-0.1.1 moodle-ro-1.9.8-0.1.1 moodle-ru-1.9.8-0.1.1 moodle-sk-1.9.8-0.1.1 moodle-sl-1.9.8-0.1.1 moodle-so-1.9.8-0.1.1 moodle-sq-1.9.8-0.1.1 moodle-sr-1.9.8-0.1.1 moodle-sv-1.9.8-0.1.1 moodle-th-1.9.8-0.1.1 moodle-tl-1.9.8-0.1.1 moodle-tr-1.9.8-0.1.1 moodle-uk-1.9.8-0.1.1 moodle-vi-1.9.8-0.1.1 moodle-zh_cn-1.9.8-0.1.1 - openSUSE 11.0 (noarch src) [New Version: 1.9.8]: moodle-1.9.8-0.1 - openSUSE 11.0 (noarch) [New Version: 1.9.8]: moodle-af-1.9.8-0.1 moodle-ar-1.9.8-0.1 moodle-be-1.9.8-0.1 moodle-bg-1.9.8-0.1 moodle-bs-1.9.8-0.1 moodle-ca-1.9.8-0.1 moodle-cs-1.9.8-0.1 moodle-da-1.9.8-0.1 moodle-de-1.9.8-0.1 moodle-de_du-1.9.8-0.1 moodle-el-1.9.8-0.1 moodle-es-1.9.8-0.1 moodle-et-1.9.8-0.1 moodle-eu-1.9.8-0.1 moodle-fa-1.9.8-0.1 moodle-fi-1.9.8-0.1 moodle-fr-1.9.8-0.1 moodle-ga-1.9.8-0.1 moodle-gl-1.9.8-0.1 moodle-he-1.9.8-0.1 moodle-hi-1.9.8-0.1 moodle-hr-1.9.8-0.1 moodle-hu-1.9.8-0.1 moodle-id-1.9.8-0.1 moodle-is-1.9.8-0.1 moodle-it-1.9.8-0.1 moodle-ja-1.9.8-0.1 moodle-ka-1.9.8-0.1 moodle-km-1.9.8-0.1 moodle-kn-1.9.8-0.1 moodle-ko-1.9.8-0.1 moodle-lt-1.9.8-0.1 moodle-lv-1.9.8-0.1 moodle-mi_tn-1.9.8-0.1 moodle-ms-1.9.8-0.1 moodle-nl-1.9.8-0.1 moodle-nn-1.9.8-0.1 moodle-no-1.9.8-0.1 moodle-pl-1.9.8-0.1 moodle-pt-1.9.8-0.1 moodle-ro-1.9.8-0.1 moodle-ru-1.9.8-0.1 moodle-sk-1.9.8-0.1 moodle-sl-1.9.8-0.1 moodle-so-1.9.8-0.1 moodle-sq-1.9.8-0.1 moodle-sr-1.9.8-0.1 moodle-sv-1.9.8-0.1 moodle-th-1.9.8-0.1 moodle-tl-1.9.8-0.1 moodle-tr-1.9.8-0.1 moodle-uk-1.9.8-0.1 moodle-vi-1.9.8-0.1 moodle-zh_cn-1.9.8-0.1 References: http://support.novell.com/security/cve/CVE-2010-1613.html http://support.novell.com/security/cve/CVE-2010-1614.html http://support.novell.com/security/cve/CVE-2010-1615.html http://support.novell.com/security/cve/CVE-2010-1616.html http://support.novell.com/security/cve/CVE-2010-1617.html http://support.novell.com/security/cve/CVE-2010-1618.html http://support.novell.com/security/cve/CVE-2010-1619.html https://bugzilla.novell.com/591850