Hello everyone,
The following versions of Totara Learn have now been released:
These versions do contain security fixes, and for this reason we strongly recommend upgrade.
Each release also includes bug fixes and improvements.
A big thanks to the following people for their contributions to this release:
- Brad Simpson - Kineo USA - TL-35251 - Brad Simpson - Kineo USA
Release 16.5 (28th September 2022):
Security issues:
TL-35414 Fixed remote code execution risk when restoring a malformed backup file with HTML block configuration (MSA-22-0024 / CVE-2022-40314)
Performance improvements:
TL-35218 Improved the performance of the current learning block and the GraphQL query returning the current learning items for Mobile
Bug fixes:
TL-34147 Atto editor no longer autoplays videos and audio media while editing
TL-34706 Updated the Atto editor to only auto-size to match the textarea(s) it replaces if the editor is visible
TL-34753 Fixed time enrolled for course completions not being recorded in some cases
Before, users enrolments were being marked as enrolled differently if the old
and deprecated completionstartonenrol setting was enabled. This has now been
fixed.
TL-34870 Fixed Trainer column for Feedback Summary report builder not being populated if trainer is enrolled
TL-34993 Updated the select options in the "Completion of other course sections" section on the course completion settings page to have a title attribute and to overflow with an ellipsis
TL-35012 Fixed enrolment queries not using greater than or equal when comparing to timestart
Previously, all database queries getting the current enrolments for users have
not considered the timestart value as being included. All comparisons have been
set to timestart < :now (where now is the current timestamp). Technically this
is incorrect as the timestart value needs to be included. However, in reality it
is quite unlikely that this would have an impact on existing sites. This has now
been fixed.
TL-35022 Fixed an error on tabs when sharing resources with a workspace when user does not have the right capabilities
TL-35144 Fixed column type normalisation function in MySQL
We have applied a multibyte-aware string function instead when checking for
column types in MySQL, as an issue was found while using Turkish language.
TL-35208 Ensured the correct return type for totara_message_eventdata() function is used
TL-35251 Fixed duplicate HTML ids on custom field icons
TL-35253 Fixed a regression from TL-34907 to ensure completion progress is displayed correctly in the Current Learning block
TL-35276 Fixed the display of selected items when using multiselect questions in the Feedback module
TL-35292 Fixed relative due date fields in the legacy program assignment interface to allow a setting of '0'
TL-35390 Fixed issue where Weka toolbar was not navigable by keyboard
TL-35392 Fixed failing unit tests due to a change in the PHPUnit upstream library
TL-35200 Fixed keyboard navigation to the close button on a modal
Contributions:
* Brad Simpson - Kineo USA - TL-35251
Release 15.11 (28th September 2022):
Security issues:
TL-35414 Fixed remote code execution risk when restoring a malformed backup file with HTML block configuration (MSA-22-0024 / CVE-2022-40314)
Performance improvements:
TL-35218 Improved the performance of the current learning block and the GraphQL query returning the current learning items for Mobile
Bug fixes:
TL-34147 Atto editor no longer autoplays videos and audio media while editing
TL-34753 Fixed time enrolled for course completions not being recorded in some cases
Before, users enrolments were being marked as enrolled differently if the old
and deprecated completionstartonenrol setting was enabled. This has now been
fixed.
TL-34870 Fixed Trainer column for Feedback Summary report builder not being populated if trainer is enrolled
TL-34993 Updated the select options in the "Completion of other course sections" section on the course completion settings page to have a title attribute and to overflow with an ellipsis
TL-35012 Fixed enrolment queries not using greater than or equal when comparing to timestart
Previously, all database queries getting the current enrolments for users have
not considered the timestart value as being included. All comparisons have been
set to timestart < :now (where now is the current timestamp). Technically this
is incorrect as the timestart value needs to be included. However, in reality it
is quite unlikely that this would have an impact on existing sites. This has now
been fixed.
TL-35022 Fixed an error on tabs when sharing resources with a workspace when user does not have the right capabilities
TL-35144 Fixed column type normalisation function in MySQL
We have applied a multibyte-aware string function instead when checking for
column types in MySQL, as an issue was found while using Turkish language.
TL-35208 Ensured the correct return type for totara_message_eventdata() function is used
TL-35225 Fixed UTF-8 character set handling for MariaDB 10.6
TL-35276 Fixed the display of selected items when using multiselect questions in the Feedback module
TL-35292 Fixed relative due date fields in the legacy program assignment interface to allow a setting of '0'
TL-35390 Fixed issue where Weka toolbar was not navigable by keyboard
TL-35392 Fixed failing unit tests due to a change in the PHPUnit upstream library
TL-35200 Fixed keyboard navigation to the close button on a modal
Release 14.16 (28th September 2022):
Security issues:
TL-35414 Fixed remote code execution risk when restoring a malformed backup file with HTML block configuration (MSA-22-0024 / CVE-2022-40314)
Performance improvements:
TL-35218 Improved the performance of the current learning block and the GraphQL query returning the current learning items for Mobile
Bug fixes:
TL-34147 Atto editor no longer autoplays videos and audio media while editing
TL-34753 Fixed time enrolled for course completions not being recorded in some cases
Before, users enrolments were being marked as enrolled differently if the old
and deprecated completionstartonenrol setting was enabled. This has now been
fixed.
TL-34870 Fixed Trainer column for Feedback Summary report builder not being populated if trainer is enrolled
TL-34993 Updated the select options in the "Completion of other course sections" section on the course completion settings page to have a title attribute and to overflow with an ellipsis
TL-35012 Fixed enrolment queries not using greater than or equal when comparing to timestart
Previously, all database queries getting the current enrolments for users have
not considered the timestart value as being included. All comparisons have been
set to timestart < :now (where now is the current timestamp). Technically this
is incorrect as the timestart value needs to be included. However, in reality it
is quite unlikely that this would have an impact on existing sites. This has now
been fixed.
TL-35022 Fixed an error on tabs when sharing resources with a workspace when user does not have the right capabilities
TL-35144 Fixed column type normalisation function in MySQL
We have applied a multibyte-aware string function instead when checking for
column types in MySQL, as an issue was found while using Turkish language.
TL-35208 Ensured the correct return type for totara_message_eventdata() function is used
TL-35225 Fixed UTF-8 character set handling for MariaDB 10.6
TL-35276 Fixed the display of selected items when using multiselect questions in the Feedback module
TL-35292 Fixed relative due date fields in the legacy program assignment interface to allow a setting of '0'
TL-35390 Fixed issue where Weka toolbar was not navigable by keyboard
TL-35392 Fixed failing unit tests due to a change in the PHPUnit upstream library
TL-35200 Fixed keyboard navigation to the close button on a modal
Release 13.24 (28th September 2022):
Security issues:
TL-35414 Fixed remote code execution risk when restoring a malformed backup file with HTML block configuration (MSA-22-0024 / CVE-2022-40314)
Performance improvements:
TL-35218 Improved the performance of the current learning block and the GraphQL query returning the current learning items for Mobile
Bug fixes:
TL-34147 Atto editor no longer autoplays videos and audio media while editing
TL-34753 Fixed time enrolled for course completions not being recorded in some cases
Before, users enrolments were being marked as enrolled differently if the old
and deprecated completionstartonenrol setting was enabled. This has now been
fixed.
TL-34870 Fixed Trainer column for Feedback Summary report builder not being populated if trainer is enrolled
TL-34993 Updated the select options in the "Completion of other course sections" section on the course completion settings page to have a title attribute and to overflow with an ellipsis
TL-35012 Fixed enrolment queries not using greater than or equal when comparing to timestart
Previously, all database queries getting the current enrolments for users have
not considered the timestart value as being included. All comparisons have been
set to timestart < :now (where now is the current timestamp). Technically this
is incorrect as the timestart value needs to be included. However, in reality it
is quite unlikely that this would have an impact on existing sites. This has now
been fixed.
TL-35022 Fixed an error on tabs when sharing resources with a workspace when user does not have the right capabilities
TL-35144 Fixed column type normalisation function in MySQL
We have applied a multibyte-aware string function instead when checking for
column types in MySQL, as an issue was found while using Turkish language.
TL-35225 Fixed UTF-8 character set handling for MariaDB 10.6
TL-35276 Fixed the display of selected items when using multiselect questions in the Feedback module
TL-35390 Fixed issue where Weka toolbar was not navigable by keyboard
TL-35392 Fixed failing unit tests due to a change in the PHPUnit upstream library
TL-35200 Fixed keyboard navigation to the close button on a modal
Release 12.47 (28th September 2022):
Security issues:
TL-35414 Fixed remote code execution risk when restoring a malformed backup file with HTML block configuration (MSA-22-0024 / CVE-2022-40314)
Bug fixes:
TL-34753 Fixed time enrolled for course completions not being recorded in some cases
Before, users enrolments were being marked as enrolled differently if the old
and deprecated completionstartonenrol setting was enabled. This has now been
fixed.
TL-34870 Fixed Trainer column for Feedback Summary report builder not being populated if trainer is enrolled
TL-35012 Fixed enrolment queries not using greater than or equal when comparing to timestart
Previously, all database queries getting the current enrolments for users have
not considered the timestart value as being included. All comparisons have been
set to timestart < :now (where now is the current timestamp). Technically this
is incorrect as the timestart value needs to be included. However, in reality it
is quite unlikely that this would have an impact on existing sites. This has now
been fixed.
TL-35225 Fixed UTF-8 character set handling for MariaDB 10.6
TL-35392 Fixed failing unit tests due to a change in the PHPUnit upstream library
Release 11.55 (28th September 2022):
Security issues:
TL-35414 Fixed remote code execution risk when restoring a malformed backup file with HTML block configuration (MSA-22-0024 / CVE-2022-40314)
Bug fixes:
TL-34870 Fixed Trainer column for Feedback Summary report builder not being populated if trainer is enrolled
TL-35392 Fixed failing unit tests due to a change in the PHPUnit upstream library