Moodle 2.1.7 release notes

Jump to: navigation, search

This version of Moodle is no longer fully supported. Only fixes to serious security issues have been applied to this version. You are encouraged to upgrade to a fully supported version of Moodle.

Releases > Moodle 2.1.7 release notes

Release date: 9 July 2012

Here is the full list of fixed issues in 2.1.7.


  • MDL-28557 Group event now appears to teachers, managers and administrators
  • MDL-33398 MDL-27368 Cron works when course completion is enabled

Functional changes

Security issues

  • MSA-12-0042 File access issue in blocks
  • MSA-12-0043 Early information access issue in forum
  • MSA-12-0044 Capability check issue in forum subscriptions
  • MSA-12-0045 Injection potential in admin for repositories
  • MSA-12-0046 Insecure protocol redirection in LDAP authentication
  • MSA-12-0047 SQL injection potential in Feedback module
  • MSA-12-0048 Possible XSS in cohort administration
  • MSA-12-0049 Group restricted activity displayed to all users
  • MSA-12-0050 Potential DOS attack through database activity

Fixes and improvements

  • MDL-32866 Filemanager in private files now saves changes
  • MDL-33583 "Keep all" automated backups now works
  • MDL-33607 Add new wiki page no longer reports error writing to database
  • MDL-33603 Database activity entries are linked correctly
  • MDL-26892 Question images not lost during upgrade
  • MDL-29924 Glossary attachments appear in filter popups

See also