CVE-2015-2268

Name of the Vulnerable Software and Affected Versions Moodle versions 2.5.9 and earlier, 2.6.x through 2.6.8, 2.7.x through 2.7.5, 2.8.x through 2.8.3

Description The issue is related to improper resource management in the filter/urltolink/filter.php component of the Moodle learning management system. It allows remote authenticated users to cause a denial of service, resulting in CPU consumption or partial outage, by sending a crafted string that is matched against an improper regular expression.

Recommendations For versions 2.5.9 and earlier, update to a version later than 2.5.9. For versions 2.6.x through 2.6.8, update to version 2.6.9 or later. For versions 2.7.x through 2.7.5, update to version 2.7.6 or later. For versions 2.8.x through 2.8.3, update to version 2.8.4 or later.