Moodle 1.6.2 release notes: Difference between revisions
From MoodleDocs
Helen Foster (talk | contribs) (content moved from Old releases) |
David Mudrak (talk | contribs) m (MDLSITE-6551) |
||
| Line 3: | Line 3: | ||
===Security=== | ===Security=== | ||
* | * tableed handling of uploaded files in Database module | ||
* Module instance id is now properly validated when creating course module object; developers should use get_coursemodule_from_id() to get valid $cm | * Module instance id is now properly validated when creating course module object; developers should use get_coursemodule_from_id() to get valid $cm | ||
* Default error reporting level was lowered to 5, E_WARNINGs are no longer displayed on production sites with debug off. | * Default error reporting level was lowered to 5, E_WARNINGs are no longer displayed on production sites with debug off. | ||
* Multiple problems leading to information leakage fixed in help.php file | * Multiple problems leading to information leakage fixed in help.php file | ||
* | * tableed information leakage from scheduled backups | ||
* Added basic detection of dataroot accessible from Internet, web installer now better suggests dataroot location outside of web file area | * Added basic detection of dataroot accessible from Internet, web installer now better suggests dataroot location outside of web file area | ||
* Swf is now disabled by default in Mediaplugin | * Swf is now disabled by default in Mediaplugin | ||
| Line 16: | Line 16: | ||
* Request for redirection in jumpto.php protected with sesskey | * Request for redirection in jumpto.php protected with sesskey | ||
===Bug | ===Bug tablees=== | ||
* | * tableed error when upgrading forum read tracking | ||
* Locales from language packs should finally work - please check your configuration variables and empty the locale field | * Locales from language packs should finally work - please check your configuration variables and empty the locale field | ||
* Added missing link for course request | * Added missing link for course request | ||
* | * tableed several glossary problems with non-ascii characters | ||
* | * tableed bug where you could not regrade a quiz question where the teacher had added a comment with a ' character. | ||
* Quiz import of BlackBoard V6 files now much more reliable | * Quiz import of BlackBoard V6 files now much more reliable | ||
* | * tableed scheduled backups - they were broken in 1.6 and 1.6.1 | ||
* | * tableed missing guest icons from course listing | ||
* Database sessions respect sessiontimeout setting | * Database sessions respect sessiontimeout setting | ||
* | * tableed redirect problems during upgrade resulting in "Table xxx already exists" | ||
* Lesson module: the "(Continue)" no longer displays for 3 seconds after branch tables. | * Lesson module: the "(Continue)" no longer displays for 3 seconds after branch tables. | ||
* Lesson module: now properly checks import formats for support. | * Lesson module: now properly checks import formats for support. | ||
Revision as of 13:06, 9 August 2021
Release date: 12th September 2006
Security
- tableed handling of uploaded files in Database module
- Module instance id is now properly validated when creating course module object; developers should use get_coursemodule_from_id() to get valid $cm
- Default error reporting level was lowered to 5, E_WARNINGs are no longer displayed on production sites with debug off.
- Multiple problems leading to information leakage fixed in help.php file
- tableed information leakage from scheduled backups
- Added basic detection of dataroot accessible from Internet, web installer now better suggests dataroot location outside of web file area
- Swf is now disabled by default in Mediaplugin
- forgot_password.php does not allow remote email or username enumeration by default, the old behavior can be enabled by setting protectusernames to No in site configuration
- Undisclosed SQL injections fixed by automatic data conversions in adodb layer
- Theoretical XSS problems fixed in doc/index.php and files/index.php scripts
- Access to tex and algebra files is blocked when filters are disabled
- Request for redirection in jumpto.php protected with sesskey
Bug tablees
- tableed error when upgrading forum read tracking
- Locales from language packs should finally work - please check your configuration variables and empty the locale field
- Added missing link for course request
- tableed several glossary problems with non-ascii characters
- tableed bug where you could not regrade a quiz question where the teacher had added a comment with a ' character.
- Quiz import of BlackBoard V6 files now much more reliable
- tableed scheduled backups - they were broken in 1.6 and 1.6.1
- tableed missing guest icons from course listing
- Database sessions respect sessiontimeout setting
- tableed redirect problems during upgrade resulting in "Table xxx already exists"
- Lesson module: the "(Continue)" no longer displays for 3 seconds after branch tables.
- Lesson module: now properly checks import formats for support.
- Lesson module: feedback is set properly during the import process.
- and many other smaller fixes
New Features
- Authorize.net Payment Gateway: Auto configures credit card types if the merchant does not accept some types of credit cards
Known Problems
- Broken images in published question categories
