A PHP Error was encountered

Severity: Warning

Message: fopen(/var/lib/php/sessions/ci_session83vouneaiegqcmf89djlg3v0b1iglhji): failed to open stream: No space left on device

Filename: drivers/Session_files_driver.php

Line Number: 176

Backtrace:

File: /var/www/html/application/core/MY_Controller.php
Line: 8
Function: __construct

File: /var/www/html/application/controllers/Frontend.php
Line: 10
Function: __construct

File: /var/www/html/index.php
Line: 315
Function: require_once

A PHP Error was encountered

Severity: Warning

Message: session_start(): Failed to read session data: user (path: /var/lib/php/sessions)

Filename: Session/Session.php

Line Number: 143

Backtrace:

File: /var/www/html/application/core/MY_Controller.php
Line: 8
Function: __construct

File: /var/www/html/application/controllers/Frontend.php
Line: 10
Function: __construct

File: /var/www/html/index.php
Line: 315
Function: require_once

Advisory for Moodle Security Update


Advisory for Moodle Security Update

  • NIC-CERT/2022-08/368
  • Date: 2022-08-31
  • CVE ID: Multiple
  • Severity: Critical

Description:

The Mustache template library included with Moodle has been upgraded to the latest version, which includes a fix for a serious security issue. Enabling and disabling installed H5P libraries did not include the necessary token to prevent a CSRF risk.

Affected Versions and CVEs:

CVE Identifier

Versions Affected

Versions Fixed

CVE-2022-0323

4.0 to 4.0.2, 3.11 to 3.11.8, 3.9 to 3.9.15 and earlier unsupported versions


4.0.3, 3.11.9 and 3.9.16

CVE-2022-2986

4.0 to 4.0.2 and 3.11 to 3.11.8

4.0.3 and 3.11.9

References:
https://moodle.org/security