Moodle 2.1.7 release notes

From MoodleDocs

This version of Moodle is no longer fully supported. Only fixes to serious security issues have been applied to this version. You are encouraged to upgrade to a fully supported version of Moodle.

Releases > Moodle 2.1.7 release notes

Release date: 9 July 2012

Here is the full list of fixed issues in 2.1.7.

Highlights

  • MDL-28557 Group event now appears to teachers, managers and administrators
  • MDL-33398 MDL-27368 Cron works when course completion is enabled

Functional changes

Security issues

  • MSA-12-0042 File access issue in blocks
  • MSA-12-0043 Early information access issue in forum
  • MSA-12-0044 Capability check issue in forum subscriptions
  • MSA-12-0045 Injection potential in admin for repositories
  • MSA-12-0046 Insecure protocol redirection in LDAP authentication
  • MSA-12-0047 SQL injection potential in Feedback module
  • MSA-12-0048 Possible XSS in cohort administration
  • MSA-12-0049 Group restricted activity displayed to all users
  • MSA-12-0050 Potential DOS attack through database activity

Fixes and improvements

  • MDL-32866 Filemanager in private files now saves changes
  • MDL-33583 "Keep all" automated backups now works
  • MDL-33607 Add new wiki page no longer reports error writing to database
  • MDL-33603 Database activity entries are linked correctly
  • MDL-26892 Question images not lost during upgrade
  • MDL-29924 Glossary attachments appear in filter popups

See also