Security Announcements

MSA-13-0001: Security issue in Google Spellchecker in TinyMCE

 
 
My ugly mug
MSA-13-0001: Security issue in Google Spellchecker in TinyMCE
 
Description: A security issue was reported by TinyMCE. This fix has been applied to Moodle.
Issue summary:

import tinymce spellchecker 2.0.6.1

Severity/Risk: Serious
Versions affected: 2.4, 2.3 to 2.3.3+, 2.2 to 2.2.6+, 2.1 to 2.1.9+
Reported by: Petr Škoda
Issue no.: MDL-37283

CVE identifier:

CVE-2012-6112

Workaround:

Disable spellchecker plugin
Changes (master): http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37283