openSUSE Security Update : moodle (moodle-803)

medium Nessus Plugin ID 40070

Synopsis

The remote openSUSE host is missing a security update.

Description

Special command sequences in TeX files allowed users to read arbitrary files (CVE-2009-1171).

Solution

Update the affected moodle packages.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=490087

Plugin Details

Severity: Medium

ID: 40070

File Name: suse_11_0_moodle-090417.nasl

Version: 1.11

Type: local

Agent: unix

Published: 7/21/2009

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.5

CVSS v2

Risk Factor: Medium

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:moodle-pt, p-cpe:/a:novell:opensuse:moodle-kn, p-cpe:/a:novell:opensuse:moodle-ja, p-cpe:/a:novell:opensuse:moodle-nn, p-cpe:/a:novell:opensuse:moodle-sq, p-cpe:/a:novell:opensuse:moodle-bg, p-cpe:/a:novell:opensuse:moodle-ar, p-cpe:/a:novell:opensuse:moodle-pl, p-cpe:/a:novell:opensuse:moodle-hi, p-cpe:/a:novell:opensuse:moodle-is, p-cpe:/a:novell:opensuse:moodle-ko, p-cpe:/a:novell:opensuse:moodle-fi, p-cpe:/a:novell:opensuse:moodle-vi, p-cpe:/a:novell:opensuse:moodle-de_du, p-cpe:/a:novell:opensuse:moodle-fr, p-cpe:/a:novell:opensuse:moodle-no, p-cpe:/a:novell:opensuse:moodle-ga, p-cpe:/a:novell:opensuse:moodle-af, p-cpe:/a:novell:opensuse:moodle, p-cpe:/a:novell:opensuse:moodle-lt, p-cpe:/a:novell:opensuse:moodle-fa, p-cpe:/a:novell:opensuse:moodle-be, p-cpe:/a:novell:opensuse:moodle-hu, p-cpe:/a:novell:opensuse:moodle-et, p-cpe:/a:novell:opensuse:moodle-km, p-cpe:/a:novell:opensuse:moodle-es, p-cpe:/a:novell:opensuse:moodle-mi_tn, p-cpe:/a:novell:opensuse:moodle-sk, p-cpe:/a:novell:opensuse:moodle-sv, p-cpe:/a:novell:opensuse:moodle-tr, p-cpe:/a:novell:opensuse:moodle-lv, p-cpe:/a:novell:opensuse:moodle-ka, p-cpe:/a:novell:opensuse:moodle-ms, cpe:/o:novell:opensuse:11.0, p-cpe:/a:novell:opensuse:moodle-sl, p-cpe:/a:novell:opensuse:moodle-it, p-cpe:/a:novell:opensuse:moodle-hr, p-cpe:/a:novell:opensuse:moodle-id, p-cpe:/a:novell:opensuse:moodle-da, p-cpe:/a:novell:opensuse:moodle-ro, p-cpe:/a:novell:opensuse:moodle-cs, p-cpe:/a:novell:opensuse:moodle-el, p-cpe:/a:novell:opensuse:moodle-nl, p-cpe:/a:novell:opensuse:moodle-gl, p-cpe:/a:novell:opensuse:moodle-ca, p-cpe:/a:novell:opensuse:moodle-he, p-cpe:/a:novell:opensuse:moodle-ru, p-cpe:/a:novell:opensuse:moodle-so, p-cpe:/a:novell:opensuse:moodle-tl, p-cpe:/a:novell:opensuse:moodle-uk, p-cpe:/a:novell:opensuse:moodle-eu, p-cpe:/a:novell:opensuse:moodle-bs, p-cpe:/a:novell:opensuse:moodle-sr, p-cpe:/a:novell:opensuse:moodle-de, p-cpe:/a:novell:opensuse:moodle-th, p-cpe:/a:novell:opensuse:moodle-zh_cn

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 4/17/2009

Reference Information

CVE: CVE-2009-1171

CWE: 20