Package: moodle Version: 1.6.1+20060825-1 Severity: critical Justification: introduces security hole ("undisclosed SQL injections") Tags: security
----- Forwarded message from Martin Dougiamas <[EMAIL PROTECTED]> ----- To: [EMAIL PROTECTED] Subject: Moodle 1.6.2 is available Date: Wed, 13 Sep 2006 01:05:41 +0800 From: Martin Dougiamas <[EMAIL PROTECTED]> Reply-To: Do not reply to this email <[EMAIL PROTECTED]> Hi! You're getting this bulk email because you said you wanted such announcements when you registered your Moodle site with moodle.org. We'd like to give you some early direct notice that Moodle 1.6.2 is now available for download from the usual places: http://download.moodle.org Here are the release notes describing the fixes since 1.6.1: http://docs.moodle.org/en/Release_Notes#Moodle_1.6.2 Among a variety of fixes a few security issues were discovered. Most of the them are of low concern but a couple could be exploited by malicious hackers, so we highly recommend you upgrade to Moodle 1.6.2 as soon as possible to reduce your exposure. Thanks to all the developers and users who worked on the fixes in Moodle 1.6.2, and best wishes from all of us here at Moodle! ----- End forwarded message ----- -- Pelle -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]