Moodle 3.7.9 release notes: Difference between revisions
From MoodleDocs
(released) |
|||
| Line 14: | Line 14: | ||
==Security fixes== | ==Security fixes== | ||
* [https://moodle.org/mod/forum/discuss.php?d=413935 MSA-20-0016] Teacher is able to unenrol users without permission using course restore | |||
* [https://moodle.org/mod/forum/discuss.php?d=413936 MSA-20-0017] Privilege escalation within a course when restoring role overrides | |||
* [https://moodle.org/mod/forum/discuss.php?d=413938 MSA-20-0018] Some database module web services did not respect group settings | |||
* [https://moodle.org/mod/forum/discuss.php?d=413939 MSA-20-0019] tool_uploadcourse creates new enrol instances unexpectedly in some circumstances | |||
* [https://moodle.org/mod/forum/discuss.php?d=413941 MSA-20-0021] The participants table download feature did not respect the site's "show user identity" configuration | |||
==See also== | ==See also== | ||
Revision as of 09:23, 16 November 2020
This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.
Releases > Moodle 3.7.9 release notes
Release date: 9 November 2020
Here is the full list of fixed issues in 3.7.9.
For developers
- MDL-52407 - Travis: Start sending e-mail notifications
Security fixes
- MSA-20-0016 Teacher is able to unenrol users without permission using course restore
- MSA-20-0017 Privilege escalation within a course when restoring role overrides
- MSA-20-0018 Some database module web services did not respect group settings
- MSA-20-0019 tool_uploadcourse creates new enrol instances unexpectedly in some circumstances
- MSA-20-0021 The participants table download feature did not respect the site's "show user identity" configuration
