Note:

If you want to create a new page for developers, you should create it on the Moodle Developer Resource site.

Moodle 3.8.4 release notes: Difference between revisions

From MoodleDocs
mNo edit summary
Line 63: Line 63:
==Security fixes==
==Security fixes==
 
 
Details of any security issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
* [https://moodle.org/mod/forum/discuss.php?d=407391 MSA-20-0007] Vulnerable JavaScript libraries: jQuery 1.9.1 (upstream)
* [https://moodle.org/mod/forum/discuss.php?d=407392 MSA-20-0008] Reflected XSS in admin task logs filter
* [https://moodle.org/mod/forum/discuss.php?d=407393 MSA-20-0009] Course enrolments allowed privilege escalation from teacher role into manager role
* [https://moodle.org/mod/forum/discuss.php?d=407394 MSA-20-0010] yui_combo should mitigate denial of service risk
 
==See also==
==See also==
*[[Moodle 3.8.3 release notes]]
*[[Moodle 3.8.3 release notes]]

Revision as of 07:20, 20 July 2020

Releases > Moodle 3.8.4 release notes


Release date: 13 July 2020

Here is the full list of fixed issues in 3.8.4.

General fixes and improvements

  • MDL-67700 - Messages displaying in incorrect conversations when switching between conversations quickly
  • MDL-60827 - OAuth 2 still expecting email verification after "Require email verification" has been disabled
  • MDL-52578 - Activity weight set to 0 on creation
  • MDL-68864 - Clear my choice for single answer multiple choice questions is erratic
  • MDL-67126 - In assignment activity the completion state is not set reliably for all group members
  • MDL-68436 - Atto RecordRTC (record audio/video) plugin only works in the first editor on a page
  • MDL-69106 - convert_submissions task with asynchronous document conversion cannot be completed by cron
  • MDL-68203 - Error duplicating quiz when there is a course view link in the answer
  • MDL-69109 - Theme icons are lost after web upgrade in 3.9 or theme change in other versions
  • MDL-66917 - No validation that uploaded (from zip) plugin has higher version than installed
  • MDL-68992 - Update minimal age of digital consent according to current legislation
  • MDL-68253 - On the first page of a book, no previous arrow should be shown in navigation
  • MDL-67172 - Allow multiple H5P content displayed properly when accessing the first time (backport of MDL-67095 )
  • MDL-67497 - Capability "backuptargetimport" should have captype "read"
  • MDL-64175 - 'Advanced settings' for media resources in Atto are not loaded properly when editing
  • MDL-68215 - Make the Activity results block styling consistent with other blocks
  • MDL-69002 - Backpack authenticate check called too regularly for admin
  • MDL-68847 - Fix missing variable bug with link dnd code
  • MDL-68733 - quiz random question tags are deleted accidentally on entire site
  • MDL-68723 - Filemanager File tree view does not list all files.
  • MDL-68576 - Filepicker is not working when using the file details view
  • MDL-68270 - Compact logo on Nav Bar is blurred with Boost related themes
  • MDL-68054 - Capability "viewhiddenactivities" and "viewhiddensections" should have captype "read"
  • MDL-57240 - For an overdue quiz attempt, the summary page has links that just redirect back to the same page
  • MDL-66899 - Regrading quiz attempts should be logged
  • MDL-69077 - The capabilities moodle/question:tag* are not visible in the "Check permissions" page in the activity context
  • MDL-66601 - Usability issue trying to uploading images wider than browser width, in RTL mode
  • MDL-52138 - Gradebook floating headers are incorrectly styled
  • MDL-68099 - Warning in grader report in separate groups mode
  • MDL-68828 - Theme classic mobile issues
  • MDL-68899 - Dashboard course cards don't render well in theme classic
  • MDL-67903 - UI for grades import using spreadsheet is broken in theme_boost and theme_classic
  • MDL-68738 - YouTube video displayed twice in wiki
  • MDL-63812 - Question type Drag and drop into text undefined notice for gap in question and answer slot
  • MDL-68425 - Participants page shows option to send messages without capability check
  • MDL-68772 - In edit quiz (Boost / Classic) navigation overlaps
  • MDL-69021 - Alert links hard to distinguish
  • MDL-67294 - Choosing bulk removal of empty submissions causes an error
  • MDL-68137 - "Download All Submissions as a zip" can remove file extension

Accessibility improvements

  • MDL-68312 - Gradebook: Grader report: Accessibility issues
  • MDL-69008 - Accessibility issues in the pagination bar template
  • MDL-68353 - Course management: Create new course: Accessibility issues
  • MDL-68343 - Gradebook: Single view: Accessibility issues
  • MDL-68200 - Forum: Discussion list: Accessibility issues

Security improvements

  • MDL-68276 - Standard log entries can be manipulated
  • MDL-68631 - Cron current user may not be reset between scheduled tasks

Security fixes

  • MSA-20-0007 Vulnerable JavaScript libraries: jQuery 1.9.1 (upstream)
  • MSA-20-0008 Reflected XSS in admin task logs filter
  • MSA-20-0009 Course enrolments allowed privilege escalation from teacher role into manager role
  • MSA-20-0010 yui_combo should mitigate denial of service risk

See also

Retrieved from "https://docs.moodle.org/dev/index.php?title=Moodle_3.8.4_release_notes&oldid=57720"
Powered by MediaWiki