Difference between revisions of "Moodle 3.6.10 release notes"

Jump to: navigation, search
m
(Security fixes)
 
Line 14: Line 14:
 
==Security fixes==
 
==Security fixes==
 
 
 
 
Details of any security issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
+
* [https://moodle.org/mod/forum/discuss.php?d=403512 MSA-20-0005] MathJax URL upgraded to later version to remove XSS risk (upstream)
 +
* [https://moodle.org/mod/forum/discuss.php?d=403513 MSA-20-0006] Remote code execution possible via SCORM packages
  
 
==See also==
 
==See also==

Latest revision as of 07:40, 18 May 2020

This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.

Releases > Moodle 3.6.10 release notes


Release date: 11 May 2020

Here is the full list of fixed issues in 3.6.10.

Fixes and improvements

  • MDL-66245 - GDPR data request export not usable when using special characters (invalid file paths)

Security fixes

  • MSA-20-0005 MathJax URL upgraded to later version to remove XSS risk (upstream)
  • MSA-20-0006 Remote code execution possible via SCORM packages

See also