openSUSE-SU-2010:0365-1 (moderate): moodle security update

openSUSE Security Update: moodle security update ______________________________________________________________________________ Announcement ID: openSUSE-SU-2010:0365-1 Rating: moderate References: #616186 Cross-References: CVE-2010-2228 CVE-2010-2229 CVE-2010-2230 CVE-2010-2231 Affected Products: openSUSE 11.1 openSUSE 11.0 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. It includes one version update. Description: Moodle was prone to several Cross-Site Scripting (XSS) vulnerabilities (CVE-2010-2228, CVE-2010-2229, CVE-2010-2230, CVE-2010-2231). Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 11.1: zypper in -t patch moodle-2691 - openSUSE 11.0: zypper in -t patch moodle-2691 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 11.1 (noarch src) [New Version: 1.9.9]: moodle-1.9.9-0.1.1 - openSUSE 11.1 (noarch) [New Version: 1.9.9]: moodle-af-1.9.9-0.1.1 moodle-ar-1.9.9-0.1.1 moodle-be-1.9.9-0.1.1 moodle-bg-1.9.9-0.1.1 moodle-bs-1.9.9-0.1.1 moodle-ca-1.9.9-0.1.1 moodle-cs-1.9.9-0.1.1 moodle-da-1.9.9-0.1.1 moodle-de-1.9.9-0.1.1 moodle-de_du-1.9.9-0.1.1 moodle-el-1.9.9-0.1.1 moodle-es-1.9.9-0.1.1 moodle-et-1.9.9-0.1.1 moodle-eu-1.9.9-0.1.1 moodle-fa-1.9.9-0.1.1 moodle-fi-1.9.9-0.1.1 moodle-fr-1.9.9-0.1.1 moodle-ga-1.9.9-0.1.1 moodle-gl-1.9.9-0.1.1 moodle-he-1.9.9-0.1.1 moodle-hi-1.9.9-0.1.1 moodle-hr-1.9.9-0.1.1 moodle-hu-1.9.9-0.1.1 moodle-id-1.9.9-0.1.1 moodle-is-1.9.9-0.1.1 moodle-it-1.9.9-0.1.1 moodle-ja-1.9.9-0.1.1 moodle-ka-1.9.9-0.1.1 moodle-km-1.9.9-0.1.1 moodle-kn-1.9.9-0.1.1 moodle-ko-1.9.9-0.1.1 moodle-lt-1.9.9-0.1.1 moodle-lv-1.9.9-0.1.1 moodle-mi_tn-1.9.9-0.1.1 moodle-ms-1.9.9-0.1.1 moodle-nl-1.9.9-0.1.1 moodle-nn-1.9.9-0.1.1 moodle-no-1.9.9-0.1.1 moodle-pl-1.9.9-0.1.1 moodle-pt-1.9.9-0.1.1 moodle-ro-1.9.9-0.1.1 moodle-ru-1.9.9-0.1.1 moodle-sk-1.9.9-0.1.1 moodle-sl-1.9.9-0.1.1 moodle-so-1.9.9-0.1.1 moodle-sq-1.9.9-0.1.1 moodle-sr-1.9.9-0.1.1 moodle-sv-1.9.9-0.1.1 moodle-th-1.9.9-0.1.1 moodle-tl-1.9.9-0.1.1 moodle-tr-1.9.9-0.1.1 moodle-uk-1.9.9-0.1.1 moodle-vi-1.9.9-0.1.1 moodle-zh_cn-1.9.9-0.1.1 - openSUSE 11.0 (noarch src) [New Version: 1.9.9]: moodle-1.9.9-0.1 - openSUSE 11.0 (noarch) [New Version: 1.9.9]: moodle-af-1.9.9-0.1 moodle-ar-1.9.9-0.1 moodle-be-1.9.9-0.1 moodle-bg-1.9.9-0.1 moodle-bs-1.9.9-0.1 moodle-ca-1.9.9-0.1 moodle-cs-1.9.9-0.1 moodle-da-1.9.9-0.1 moodle-de-1.9.9-0.1 moodle-de_du-1.9.9-0.1 moodle-el-1.9.9-0.1 moodle-es-1.9.9-0.1 moodle-et-1.9.9-0.1 moodle-eu-1.9.9-0.1 moodle-fa-1.9.9-0.1 moodle-fi-1.9.9-0.1 moodle-fr-1.9.9-0.1 moodle-ga-1.9.9-0.1 moodle-gl-1.9.9-0.1 moodle-he-1.9.9-0.1 moodle-hi-1.9.9-0.1 moodle-hr-1.9.9-0.1 moodle-hu-1.9.9-0.1 moodle-id-1.9.9-0.1 moodle-is-1.9.9-0.1 moodle-it-1.9.9-0.1 moodle-ja-1.9.9-0.1 moodle-ka-1.9.9-0.1 moodle-km-1.9.9-0.1 moodle-kn-1.9.9-0.1 moodle-ko-1.9.9-0.1 moodle-lt-1.9.9-0.1 moodle-lv-1.9.9-0.1 moodle-mi_tn-1.9.9-0.1 moodle-ms-1.9.9-0.1 moodle-nl-1.9.9-0.1 moodle-nn-1.9.9-0.1 moodle-no-1.9.9-0.1 moodle-pl-1.9.9-0.1 moodle-pt-1.9.9-0.1 moodle-ro-1.9.9-0.1 moodle-ru-1.9.9-0.1 moodle-sk-1.9.9-0.1 moodle-sl-1.9.9-0.1 moodle-so-1.9.9-0.1 moodle-sq-1.9.9-0.1 moodle-sr-1.9.9-0.1 moodle-sv-1.9.9-0.1 moodle-th-1.9.9-0.1 moodle-tl-1.9.9-0.1 moodle-tr-1.9.9-0.1 moodle-uk-1.9.9-0.1 moodle-vi-1.9.9-0.1 moodle-zh_cn-1.9.9-0.1 References: http://support.novell.com/security/cve/CVE-2010-2228.html http://support.novell.com/security/cve/CVE-2010-2229.html http://support.novell.com/security/cve/CVE-2010-2230.html http://support.novell.com/security/cve/CVE-2010-2231.html https://bugzilla.novell.com/616186