Boletines de Vulnerabilidades

MSA-21-0019: Upgrade H5P PHP library to latest minor version (upstream)

Información sobre el sistema
   
Software afectado PHP

Descripción
by Michael Hawkins. The H5P PHP library included with Moodle has been upgraded to the latest minor version, which includes a security fix.Severity/Risk:SeriousVersions affected:3.10 to 3.10.3, 3.9 to 3.9.6 and 3.8 to 3.8.8Versions fixed:3.11, 3.10.4, 3.9.7 and 3.8.9Reported by:Sara ArjonaCVE identifier:N/AChanges (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-71408Tracker issue:MDL-71408 Upgrade H5P PHP library to latest minor version (upstream)

More info:

https://moodle.org/mod/forum/discuss.php?d=422315&parent=1701640

Identificadores estándar
Propiedad Valor
CVE

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2021-05-18

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT