1
Candidate: CVE-2012-3397
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3397
5
http://openwall.com/lists/oss-security/2012/07/17/1
7
lib/modinfolib.php in Moodle 2.0.x before 2.0.10, 2.1.x before 2.1.7, 2.2.x
8
before 2.2.4, and 2.3.x before 2.3.1 does not check for a group-membership
9
requirement when determining whether an activity is unavailable or hidden,
10
which allows remote authenticated users to bypass intended access
11
restrictions by selecting an activity that is configured for a group of
16
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=682203
22
upstream: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-33466
23
upstream_moodle: released (2.2.3.dfsg-2.1)
24
hardy_moodle: ignored (reached end-of-life)
25
lucid_moodle: not-affected
26
natty_moodle: not-affected
27
oneiric_moodle: not-affected
28
precise_moodle: not-affected
29
devel_moodle: not-affected (2.2.3.dfsg-2.1)