Candidate: CVE-2013-2080
PublicDate: 2013-05-25 03:18:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2080
 http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-37475
 http://www.openwall.com/lists/oss-security/2013/05/21/1
Description:
 The core_grade component in Moodle through 2.2.10, 2.3.x before 2.3.7, and
 2.4.x before 2.4.4 does not properly consider the existence of hidden
 grades, which allows remote authenticated users to obtain sensitive
 information by leveraging the student role and reading the Gradebook
 Overview report.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by: Andrew Davis
Assigned-to:
CVSS: 

Patches_moodle:
 upstream: http://git.moodle.org/gw?p=moodle.git;a=commitdiff;h=5df9bc3998095299c6862973866252649a5e0866;hp=4ce97aed0d48514781f0d16cc069b8a7b5e1a67f
upstream_moodle: released (2.5, 2.4.4, 2.3.7)
lucid_moodle: ignored (reached end-of-life)
precise_moodle: ignored (reached end-of-life)
precise/esm_moodle: DNE (precise was needed)
quantal_moodle: ignored (reached end-of-life)
raring_moodle: ignored (reached end-of-life)
saucy_moodle: ignored (reached end-of-life)
trusty_moodle: ignored (reached end-of-life)
trusty/esm_moodle: DNE (trusty was needed)
utopic_moodle: ignored (reached end-of-life)
vivid_moodle: ignored (reached end-of-life)
vivid/stable-phone-overlay_moodle: DNE
vivid/ubuntu-core_moodle: DNE
wily_moodle: ignored (reached end-of-life)
xenial_moodle: ignored (end of standard support, was needed)
yakkety_moodle: ignored (reached end-of-life)
zesty_moodle: ignored (reached end-of-life)
artful_moodle: ignored (reached end-of-life)
bionic_moodle: needed
cosmic_moodle: ignored (reached end-of-life)
disco_moodle: ignored (reached end-of-life)
eoan_moodle: ignored (reached end-of-life)
focal_moodle: DNE
groovy_moodle: DNE
hirsute_moodle: DNE
impish_moodle: DNE
jammy_moodle: DNE
devel_moodle: DNE