FEDORA-2025-ccb1a36fcb — security update for moodle

stable

moodle-4.5.4-1.fc42

FEDORA-2025-ccb1a36fcb created by limb 9 months ago for Fedora 42

Latest updates.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-ccb1a36fcb

This update has been submitted for testing by limb.

9 months ago

This update's test gating status has been changed to 'ignored'.

9 months ago

This update has been pushed to testing.

9 months ago

limb edited this update.

9 months ago

limb edited this update.

9 months ago

This update has been submitted for stable by bodhi.

9 months ago

This update has been pushed to stable.

9 months ago

Please log in to add feedback.

Metadata

Type

security

Severity

low

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

9 months ago

in testing

9 months ago

in stable

9 months ago

modified

9 months ago

approved

9 months ago

Builds

moodle-4.5.4-1.fc42

BZ#2361647 CVE-2025-3647 moodle: IDOR when accessing the cohorts report [fedora-42]

BZ#2361650 CVE-2025-3645 moodle: IDOR in messaging web service allows access to some user details [fedora-42]

BZ#2361653 CVE-2025-3644 moodle: AJAX section delete does not respect course_can_delete_section() [fedora-42]

BZ#2361656 CVE-2025-3643 moodle: Reflected XSS risk in policy tool [fedora-42]

BZ#2361659 CVE-2025-3642 moodle: Authenticated remote code execution risk in the Moodle LMS EQUELLA repository [fedora-42]

BZ#2361662 CVE-2025-3641 moodle: Authenticated remote code execution risk in the Moodle LMS Dropbox repository [fedora-42]

BZ#2361665 CVE-2025-3638 moodle: CSRF risk in Brickfield tool's analysis request action [fedora-42]

moodle-4.5.4-1.fc42

Automated Test Results

ignored