Moodle 2.3.10 release notes: Difference between revisions
From MoodleDocs
(Adding issues) |
(Adding security release notes) |
||
| (2 intermediate revisions by 2 users not shown) | |||
| Line 3: | Line 3: | ||
[[Releases]] > {{FULLPAGENAME}} | [[Releases]] > {{FULLPAGENAME}} | ||
Release date: | Release date: 14 November 2013 | ||
Here is [https://tracker.moodle.org/secure/IssueNavigator!executeAdvanced.jspa?jqlQuery=project+%3D+mdl+AND+resolution+%3D+fixed+AND+fixVersion+in+%28%222.3.10%22%29+ORDER+BY+priority+DESC&runQuery=true&clear=true the full list of fixed issues in 2.3.10]. | Here is [https://tracker.moodle.org/secure/IssueNavigator!executeAdvanced.jspa?jqlQuery=project+%3D+mdl+AND+resolution+%3D+fixed+AND+fixVersion+in+%28%222.3.10%22%29+ORDER+BY+priority+DESC&runQuery=true&clear=true the full list of fixed issues in 2.3.10]. | ||
| Line 9: | Line 9: | ||
===Security issues=== | ===Security issues=== | ||
* [https://moodle.org/mod/forum/discuss.php?d=244479 MSA-13-0036] Incorrect headers sent for secured resources | |||
* [https://moodle.org/mod/forum/discuss.php?d=244480 MSA-13-0037] Cross site scripting in Messages | |||
* [https://moodle.org/mod/forum/discuss.php?d=244481 MSA-13-0038] Access to server files through repository | |||
* [https://moodle.org/mod/forum/discuss.php?d=244482 MSA-13-0039] Cross site scripting in Quiz | |||
* [https://moodle.org/mod/forum/discuss.php?d=244483 MSA-13-0040] Cross site scripting vulnerability in YUI library | |||
===Fixes and improvements=== | ===Fixes and improvements=== | ||
| Line 22: | Line 26: | ||
[[fr:Notes de mise à jour de Moodle 2.3.10]] | [[fr:Notes de mise à jour de Moodle 2.3.10]] | ||
[[es:Notas de Moodle 2.3.10]] | |||
Revision as of 00:44, 25 November 2013
This version of Moodle is no longer fully supported. Generally, only fixes to serious security issues have been applied to this version. You are encouraged to upgrade to a fully supported version of Moodle.
Releases > Moodle 2.3.10 release notes
Release date: 14 November 2013
Here is the full list of fixed issues in 2.3.10.
Security issues
- MSA-13-0036 Incorrect headers sent for secured resources
- MSA-13-0037 Cross site scripting in Messages
- MSA-13-0038 Access to server files through repository
- MSA-13-0039 Cross site scripting in Quiz
- MSA-13-0040 Cross site scripting vulnerability in YUI library
Fixes and improvements
- MDL-36818 - Setting for CURLOPT_SSL_VERIFYHOST in CAS fixed.
