Note:

If you want to create a new page for developers, you should create it on the Moodle Developer Resource site.

Moodle 3.3.8 release notes: Difference between revisions

From MoodleDocs
No edit summary
m (Protected "Moodle 3.3.8 release notes": Developer Docs Migration ([Edit=Allow only administrators] (indefinite)))
 
(5 intermediate revisions by 3 users not shown)
Line 1: Line 1:
{{Template:Migrated|newDocId=/general/releases/3.3/3.3.8}}
<p class="note">'''This version of Moodle is no longer supported for general bug fixes.''' You are encouraged to [[:en:Upgrading|upgrade]] to a supported version of Moodle.</p>
[[Releases]] > {{FULLPAGENAME}}
[[Releases]] > {{FULLPAGENAME}}
   
   
Line 19: Line 22:
===Security issues===
===Security issues===
   
   
A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
* [https://moodle.org/mod/forum/discuss.php?d=376023 MSA-18-0017] Moodle XML import of ddwtos could lead to intentional remote code execution
* [https://moodle.org/mod/forum/discuss.php?d=376024 MSA-18-0018] QuickForm library remote code vulnerability (upstream)
* [https://moodle.org/mod/forum/discuss.php?d=376025 MSA-18-0019] Boost theme - blog search GET parameter insufficiently filtered
 
==See also==
==See also==
*[[Moodle 3.3.7 release notes]]
*[[Moodle 3.3.7 release notes]]

Latest revision as of 09:08, 25 May 2022

Important:

This content of this page has been updated and migrated to the new Moodle Developer Resources. The information contained on the page should no longer be seen up-to-date.

Why not view this page on the new site and help us to migrate more content to the new site!

This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.

Releases > Moodle 3.3.8 release notes

Release date: 10 September 2018

Here is the full list of fixed issues in 3.3.8.

Highlights

  • MDL-62799 - tool_dataprivacy plugin merged into 3.3 core
  • MDL-62800 - tool_policy plugin merged into 3.3 core
  • MDL-62660 - Option to set a data request expiry time

Fixes and improvements

  • MDL-62600 - Admin is misinformed that there are no data requests
  • MDL-62989 - Data requests are listed by date requested for users
  • MDL-62896 - Some non-core plugins are missing their Additional label on the Plugin data registry page

Security issues

  • MSA-18-0017 Moodle XML import of ddwtos could lead to intentional remote code execution
  • MSA-18-0018 QuickForm library remote code vulnerability (upstream)
  • MSA-18-0019 Boost theme - blog search GET parameter insufficiently filtered

See also

Retrieved from "https://docs.moodle.org/dev/index.php?title=Moodle_3.3.8_release_notes&oldid=63020"
Powered by MediaWiki