Note: You are currently viewing documentation for Moodle 1.9. Up-to-date documentation for the latest stable version is available here: Moodle 1.9.2 release notes.

Moodle 1.9.2 release notes: Difference between revisions

From MoodleDocs
m (French link)
No edit summary
 
Line 26: Line 26:


[[fr:Notes de mise à jour de Moodle 1.9.2]]
[[fr:Notes de mise à jour de Moodle 1.9.2]]
[[de:Moodle 1.9.2 Versionsinformationen]]
</noinclude>
</noinclude>

Latest revision as of 14:51, 2 November 2009

Release date: 11th July 2008

Here is the full list of fixed issues in 1.9.2.

Highlights

  • Compatibility fixes for MSSQL, Oracle and PostgreSQL
  • Improved triggering of core events (though contributed code needs to be updated - see MDL-9983)
  • Email change confirmation and other improvements relating to reducing the risk of spam
  • Forum subscription improvements
  • Setting for deleting not-fully-set-up accounts
  • Quiz report enhancements and bug fixes (see Quiz report enhancements for full list, though most are planned for Moodle 2.0)

Security issues

  • MSA-08-0010: sql injection in HotPot module
  • MSA-08-0012: Potential non-persistent XSS when searching for group members (MSSQL and Oracle only)
  • MSA-08-0014: potential sql injection in events handling code
  • MSA-08-0015: accessible profiles of deleted users
  • MSA-08-0016: Email could be changed in profile without confirmation

See also