Moodle 2.3.1 release notes: Difference between revisions
From MoodleDocs
(Adding missing API change) |
|||
Line 19: | Line 19: | ||
===Security issues=== | ===Security issues=== | ||
* [http://moodle.org/mod/forum/discuss.php?d=207145 MSA-12-0039] File upload validation issue | |||
* [http://moodle.org/mod/forum/discuss.php?d=207146 MSA-12-0040] Capabilities issue through caching | |||
* [http://moodle.org/mod/forum/discuss.php?d=207147 MSA-12-0041] XSS issue in LTI module | |||
* [http://moodle.org/mod/forum/discuss.php?d=207152 MSA-12-0046] Insecure protocol redirection in LDAP authentication | |||
* [http://moodle.org/mod/forum/discuss.php?d=207154 MSA-12-0048] Possible XSS in cohort administration | |||
* [http://moodle.org/mod/forum/discuss.php?d=207155 MSA-12-0049] Group restricted activity displayed to all users | |||
===Fixes and improvements=== | ===Fixes and improvements=== | ||
Revision as of 00:45, 17 July 2012
Releases > Moodle 2.3.1 release notes
Release date: 9 July 2012
Here is the full list of fixed issues in 2.3.1.
Highlights
- MDL-34130 Improvements to unit tests
Functional changes
- MDL-34026 Plugin notifications page link to the plugins
API Changes
- MDL-34035 Added ability to link from help popups to pages within Moodle or outside.
Security issues
- MSA-12-0039 File upload validation issue
- MSA-12-0040 Capabilities issue through caching
- MSA-12-0041 XSS issue in LTI module
- MSA-12-0046 Insecure protocol redirection in LDAP authentication
- MSA-12-0048 Possible XSS in cohort administration
- MSA-12-0049 Group restricted activity displayed to all users
Fixes and improvements
- MDL-34119 Colourswitcher caused conflicts with lang menu and new profile fields
- MDL-31201 The string 'Table of contents' can not be translated