Moodle 3.5.9 release notes: Difference between revisions
From MoodleDocs
(3.5.9 released) |
No edit summary |
||
Line 16: | Line 16: | ||
===Security issues=== | ===Security issues=== | ||
* [https://moodle.org/mod/forum/discuss.php?d=393582 MSA-19-0024] Assigned Role in Cohort did not un-assign on removal | |||
* [https://moodle.org/mod/forum/discuss.php?d=393583 MSA-19-0025] Add additional verification for some OAuth 2 logins to prevent account compromise | |||
* [https://moodle.org/mod/forum/discuss.php?d=393585 MSA-19-0027] Open redirect in Lesson edit page | |||
* [https://moodle.org/mod/forum/discuss.php?d=393587 MSA-19-0029] Reflected XSS possible from some fatal error messages | |||
==See also== | ==See also== |
Revision as of 05:45, 18 November 2019
This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.
Releases > Moodle 3.5.9 release notes
Release date: 11 November 2019
Here is the full list of fixed issues in 3.5.9.
Fixes and improvements
For developers
- MDL-66675 - Add pause on fail option to behat
- MDL-66335 - Behat: new steps to navigate directly to a pages for any plugin, possibly while logging in
Security issues
- MSA-19-0024 Assigned Role in Cohort did not un-assign on removal
- MSA-19-0025 Add additional verification for some OAuth 2 logins to prevent account compromise
- MSA-19-0027 Open redirect in Lesson edit page
- MSA-19-0029 Reflected XSS possible from some fatal error messages