Your message dated Mon, 01 Oct 2012 13:47:57 +0000 with message-id <e1tigll-0003jp...@franck.debian.org> and subject line Bug#687924: fixed in moodle 2.2.3.dfsg-2.3 has caused the Debian Bug report #687924, regarding moodle: Multiple security issues to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 687924: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687924 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: moodle Severity: grave Tags: security Justification: user security hole Please see http://moodle.org/security/ for details: MSA-12-0055: Web service access token issue MSA-12-0054: Course reset permission issue MSA-12-0053: Blog file access issue MSA-12-0052: Course topics permission issue MSA-12-0051: File upload size constraint issue Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: moodle Source-Version: 2.2.3.dfsg-2.3 We believe that the bug you reported is fixed in the latest version of moodle, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 687...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Didier Raboud <o...@debian.org> (supplier of updated moodle package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 28 Sep 2012 12:52:21 +0200 Source: moodle Binary: moodle Architecture: source all Version: 2.2.3.dfsg-2.3 Distribution: unstable Urgency: low Maintainer: Moodle Packaging Team <pkg-moodle-maintain...@lists.alioth.debian.org> Changed-By: Didier Raboud <o...@debian.org> Description: moodle - course management system for online learning Closes: 687924 Changes: moodle (2.2.3.dfsg-2.3) unstable; urgency=low . * Non-maintainer upload. . * Backport multiple security issues from upstream's MOODLE_22_STABLE branch. (Closes: #687924) - MSA-12-0051: MDL-30792 - File upload size constraint issue Fixes CVE-2012-4400 - MSA-12-0052: MDL-28207 - Course topics permission issue Fixes CVE-2012-4401 - MSA-12-0053: MDL-34585 - Blog file access issue Fixes CVE-2012-4407 - MSA-12-0054: MDL-34519 - Course reset permission issue Fixes CVE-2012-4408 - MSA-12-0055: MDL-34368 - Web service access token issue Fixes CVE-2012-4402 Checksums-Sha1: 38f7c6560ff4047badd873b3e4d01a913f66cf27 1875 moodle_2.2.3.dfsg-2.3.dsc 06034b17963168813ae39d9b77531e5ac6ede17f 36142 moodle_2.2.3.dfsg-2.3.debian.tar.gz 19882c86e0e071cd5a72c35ad519215ad7fe9c7b 16405028 moodle_2.2.3.dfsg-2.3_all.deb Checksums-Sha256: 9dc10af483d556a0545114766950b7cdbec9a2cf568347726872b98f53beda8e 1875 moodle_2.2.3.dfsg-2.3.dsc 62b16f5a8ffb18a6682f29d2bbe3c9a6a7e57085ee038ada1292602aff34eeac 36142 moodle_2.2.3.dfsg-2.3.debian.tar.gz c125246766a899e0525677b27bcd2b3aaf3d00c80dbf5aa31b764e82f41eeda4 16405028 moodle_2.2.3.dfsg-2.3_all.deb Files: 83087b3bb8f2897733ff553232377fff 1875 web optional moodle_2.2.3.dfsg-2.3.dsc afba733a85797de8e8608efb865f1581 36142 web optional moodle_2.2.3.dfsg-2.3.debian.tar.gz 6fdb0a7c61e39c8750a2e5b0a3e9a699 16405028 web optional moodle_2.2.3.dfsg-2.3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQGcBAEBCAAGBQJQaEj7AAoJEIvPpx7KFjRV828L/i8x89BGVgk+zrtecxXy8Zn3 bVCSeqX2TBOTlbEoLCVH/y955sJSPQUaslGN96i7CbvTa8jRqnSTJ9c/RpEfwED+ IpFw31AhuuOjffC2S+BjJGwST2aL1YB/PlWawIu3xUI4f3R4O6Q+X5U5JoHk7P9u 6675ySG4OFyyoztq08tf6eFu108EZe/DBTzQS2Xevjjsxmdbo4jesdnsJD7JaByC ZMb9AnSgrc63B0v6oEZN29mQo/+adfWHfEzRGfi+zjxwzA5AHdQinywUO9BDxglI X49gqTEp+2d7WVxU+gQ3C6OtM6RICsnxFl5rB9UU0A6MDgGMtnI2+ymoaSj0S97X qqtc5+CRvz2+9CnM49VXxyTMXzis6TgQa/jF/IYM4T+SII7O58G+A0LjSv+60tfo 18pYtZCUGuvy04OqZkqgAeCPMpS4xdOeq2G2cgpNNY1PEVnszxIzDdjvFeRvo+4x uXI1+mUqGPnzfMmoopfLo4fF+N0mLHPm7n6zA3Uhqw== =7bMu -----END PGP SIGNATURE-----
--- End Message ---
