Note:

If you want to create a new page for developers, you should create it on the Moodle Developer Resource site.

Moodle 3.5.13 release notes: Difference between revisions

From MoodleDocs
mNo edit summary
Line 17: Line 17:
==Security issues==
==Security issues==
   
   
Details of any security issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
* [https://moodle.org/mod/forum/discuss.php?d=407393 MSA-20-0009] Course enrolments allowed privilege escalation from teacher role into manager role
* [https://moodle.org/mod/forum/discuss.php?d=407394 MSA-20-0010] yui_combo should mitigate denial of service risk
 
==See also==
==See also==
*[[Moodle 3.5.12 release notes]]
*[[Moodle 3.5.12 release notes]]

Revision as of 07:21, 20 July 2020

This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.

Releases > Moodle 3.5.13 release notes

Release date: 13 July 2020

Here is the full list of fixed issues in 3.5.13.

General fixes and improvements

  • MDL-68733 - quiz random question tags are deleted accidentally on entire site

Security improvements

  • MDL-68631 - Cron current user may not be reset between scheduled tasks

Security issues

  • MSA-20-0009 Course enrolments allowed privilege escalation from teacher role into manager role
  • MSA-20-0010 yui_combo should mitigate denial of service risk

See also

Retrieved from "https://docs.moodle.org/dev/index.php?title=Moodle_3.5.13_release_notes&oldid=57722"
Powered by MediaWiki