Hello everyone,
The following versions of Totara Learn have now been released:
- Release 12.23
- Release 11.32
- Release 10.37
- Release 9.48
All versions contain security fixes, and for this reason we strongly recommend upgrade.
Release 12.23 (1st October 2020):
=================================
Security issues:
TL-27855 Added filtering the filter HTML in the tag manager
TL-27856 Prevented "Log in as" capability being used in course context to gain privilege escalation
TL-27857 Added check in repositories to prevent unzipping if it will exceed allowed quota
Bug fixes:
TL-26772 Fixed incorrect join condition in Seminar session report source
In the Seminar Sessions report source the join condition being used for the
Viewer's status column was joining to the incorrect column leading to the
column showing incorrect data in situations where there were multiple
Sessions (dates) for an Event.
TL-26828 Updated the Report Builder 'dismiss_link' display class to only show link for users own messages
TL-27482 Fixed aggregation support for certification status, disabled aggregation of complex certification status in record of learning
TL-27512 Fixed a seminar notifiation template getting detached from the associated site-wide template when enabletrusttext was enabled
Note that enabletrusttext has been removed in Totara 13
TL-27685 Errors are logged when admin incorrectly hardcodes session settings in web server configuration
TL-27686 Fixed user links in user upload preview
TL-27853 Add the EXIF PHP extension as a recommended option for Totara 13 in all environment.xml files
Contributions:
* Wajdi Bshara of Xtractor - TL-26772
Release 11.32 (1st October 2020):
=================================
Security issues:
TL-27855 Added filtering the filter HTML in the tag manager
TL-27856 Prevented "Log in as" capability being used in course context to gain privilege escalation
TL-27857 Added check in repositories to prevent unzipping if it will exceed allowed quota
Bug fixes:
TL-26772 Fixed incorrect join condition in Seminar session report source
In the Seminar Sessions report source the join condition being used for the
Viewer's status column was joining to the incorrect column leading to the
column showing incorrect data in situations where there were multiple
Sessions (dates) for an Event.
TL-26828 Updated the Report Builder 'dismiss_link' display class to only show link for users own messages
TL-27512 Fixed a seminar notifiation template getting detached from the associated site-wide template when enabletrusttext was enabled
Note that enabletrusttext has been removed in Totara 13
TL-27686 Fixed user links in user upload preview
TL-27853 Add the EXIF PHP extension as a recommended option for Totara 13 in all environment.xml files
Contributions:
* Wajdi Bshara of Xtractor - TL-26772
Release 10.37 (1st October 2020):
=================================
Security issues:
TL-27855 Added filtering the filter HTML in the tag manager
TL-27856 Prevented "Log in as" capability being used in course context to gain privilege escalation
TL-27857 Added check in repositories to prevent unzipping if it will exceed allowed quota
Bug fixes:
TL-27686 Fixed user links in user upload preview
TL-27853 Add the EXIF PHP extension as a recommended option for Totara 13 in all environment.xml files
Release 9.48 (1st October 2020):
================================
Security issues:
TL-27857 Added check in repositories to prevent unzipping if it will exceed allowed quota