Note:

If you want to create a new page for developers, you should create it on the Moodle Developer Resource site.

Moodle 1.9.15 release notes: Difference between revisions

From MoodleDocs
No edit summary
(Adding security issues)
Line 9: Line 9:
===Security issues===
===Security issues===
   
   
A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
* [http://moodle.org/mod/forum/discuss.php?d=191751 MSA-11-0045] - Potential to masquerade through MNet
* [http://moodle.org/mod/forum/discuss.php?d=191752 MSA-11-0046] - Insecure authentication transmission
* [http://moodle.org/mod/forum/discuss.php?d=191754 MSA-11-0047] - Possible injection attack in Calendar
* [http://moodle.org/mod/forum/discuss.php?d=191755 MSA-11-0048] - Password loss issue
* [http://moodle.org/mod/forum/discuss.php?d=191756 MSA-11-0049] - Network restriction ineffective with MNet
* [http://moodle.org/mod/forum/discuss.php?d=191762 MSA-11-0054] - Personal information leak
 
PLEASE NOTE: The fix for MSA-11-0054 was mistakenly not included in the first November 28 build of 1.9.15 (Nov 28) but was included in the builds on December 2.  If you grabbed the build very early then you might not have that fix.


PLEASE NOTE: The fix for MDL-20627 was mistakenly not included in the first November 28 build of 1.9.15 (Nov 28) but was included in the builds on December 2.  If you grabbed the builds very early then you might not have that fix.  [http://git.moodle.org/gw?p=moodle.git;a=commitdiff;h=8f83cfbe914b501d8d419ba10f0063c0f0a6ee5f Here is the patch for that if you need it].
===Fixes and improvements===
===Fixes and improvements===
   
   

Revision as of 08:26, 6 December 2011

Releases > Moodle 1.9.15 release notes

Release date: 28th November, 2011

Bug-fixing for general core bugs in 1.9.x has ended. Support continues for serious security issues, which is reflected in this release.

Here is the full list of fixed issues in 1.9.15.

Security issues

PLEASE NOTE: The fix for MSA-11-0054 was mistakenly not included in the first November 28 build of 1.9.15 (Nov 28) but was included in the builds on December 2. If you grabbed the build very early then you might not have that fix.

Fixes and improvements

  • MDL-29529 - Fixed database error when assignments were sorted by status
  • MDL-16553 - Student can see response file for Advanced uploading assignment with no grade
  • MDL-29991 - Moodle 1.9 servers still expect the "confirmed" field from MNet

See also