[SECURITY] Fedora 10 Update: moodle-1.9.3-3.fc10

updates at fedoraproject.org updates at fedoraproject.org
Sat Nov 22 16:45:18 UTC 2008


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-9903
2008-11-22 14:17:11
--------------------------------------------------------------------------------

Name        : moodle
Product     : Fedora 10
Version     : 1.9.3
Release     : 3.fc10
URL         : http://moodle.org/
Summary     : A Course Management System
Description :
Moodle is a course management system (CMS) - a free, Open Source software
package designed using sound pedagogical principles, to help educators create
effective online learning communities.

--------------------------------------------------------------------------------
Update Information:

Fix for cron job, also fix for CVE-2008-4796.  Upgrade to new upstream, fix cron
bug.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  7 2008 Jon Ciesla <limb at jcomserv.net> - 1.9.3-3
- Moved to weekly downloaded 11/7/08 to fix Snoopy CVE-2008-4796.
* Fri Oct 31 2008 Jon Ciesla <limb at jcomserv.net> - 1.9.3-2
- Fix for BZ 468929, overactive cron job.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #469320 - CVE-2008-4796 snoopy: command execution via shell metacharacters
        https://bugzilla.redhat.com/show_bug.cgi?id=469320
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update moodle' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the Fedora-package-announce mailing list