Difference between revisions of "Moodle 2.3.9 release notes"

Jump to: navigation, search
m (added link to spanish translation of page)
(Adding security release notes)
 
Line 8: Line 8:
 
   
 
   
 
===Security issues===
 
===Security issues===
+
 
A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
+
* [https://moodle.org/mod/forum/discuss.php?d=238393 MSA-13-0032] Host verification failure in Amazon S3 repository
+
* [https://moodle.org/mod/forum/discuss.php?d=238396 MSA-13-0033] Potential SQL injection in Moodle's SQL Server driver
 +
* [https://moodle.org/mod/forum/discuss.php?d=238399 MSA-13-0035] Inadequate filtering in Blog
 +
 
 
===Fixes and improvements===
 
===Fixes and improvements===
  

Latest revision as of 01:44, 16 September 2013

This version of Moodle is no longer fully supported. Generally, only fixes to serious security issues have been applied to this version. You are encouraged to upgrade to a fully supported version of Moodle.

Releases > Moodle 2.3.9 release notes

Release date: 9 September 2013

Here is the full list of fixed issues in 2.3.9.

Security issues

  • MSA-13-0032 Host verification failure in Amazon S3 repository
  • MSA-13-0033 Potential SQL injection in Moodle's SQL Server driver
  • MSA-13-0035 Inadequate filtering in Blog

Fixes and improvements

  • MDL-40633 - Auto-linking filter behaving as expected.

See also