
This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8 and 3.11 to 3.11.14.ĭ-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon.

This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.Ĭontent on the groups page required additional sanitizing to prevent an XSS risk. This flaw affects Moodle versions 4.2, 4.1 to 4.1.3, 4.0 to 4.0.8, 3.11 to 3.11.14, 3.9 to 3.9.21 and earlier unsupported versions.Ī limited SQL injection risk was identified on the Mnet SSO access control page. Sqlite3 v3.40.1 was discovered to contain a segmentation violation at /sqlite3_aflpp/shell.c.Īn issue in the logic used to check 0.0.0.0 against the cURL blocked hosts lists resulted in an SSRF risk.
