+++ This bug was initially created as a clone of Bug #14081 +++ Advisory: ======================== Updated php-pear-CAS packages fix security vulnerabilities: A flaw in php-pear-CAS before 1.3.3, utilized by Moodle, has been found which could potentially allow unauthorised access and privilege escalation (CVE-2014-4172). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4172 ======================== Updated packages in core/updates_testing: ======================== php-pear-CAS-1.3.3-1.mga3 php-pear-CAS-1.3.3-1.mga4 from SRPMS: php-pear-CAS-1.3.3-1.mga3.src.rpm php-pear-CAS-1.3.3-1.mga4.src.rpm
Whiteboard: (none) => MGA3TOO has_procedure advisory mga3-32-ok MGA4-32-OK
Validating from bug 14081. Advisory uploaded but may need extra references. Could sysadmin please push to 3 & 4 updates Thanks
Keywords: (none) => validated_update
An update for this issue has been pushed to Mageia Updates repository. http://advisories.mageia.org/MGASA-2014-0387.html
Status: NEW => RESOLVEDResolution: (none) => FIXED