Hello everyone,
The following versions of Totara Learn have now been released:
These versions do contain security fixes, and for this reason we strongly recommend upgrade.
Each release also includes various bug fixes and improvements.
Kind regards Release Team
Release 18.1 (21st December 2023):
Security issues:
TL-39094 Fixed potential XSS in survey name being executed if a user saves a survey
Improvements:
TL-38155 Introduced a new cli script that allows admins finer control of adhoc tasks
This script lives in admin/cli/adhoc_task.php alongside the already existing
admin/cli/scheduled_task.php script.
'php admin/tool/task/cli/adhoc_task.php --help' will list the available options.
TL-38861 Improved display of modal when dropping a file into a course
TL-38874 Improved styling of icons when using the legacy program content interface
TL-38943 Improved button spacing for tenant domain managers on program / certification management page
TL-39120 PDF attachments in Weka will now open in a new tab instead of downloading
TL-38960 Improved UX of password unmask field.
Cursor is now visible when typing, typography and wording were updated, and
tabbing backwards now works.
Visual improvements:
TL-39084 Fixed the spacing between the menu items in the header
TL-39121 File attachment cards in Workspaces and Resources have been updated with a cleaner layout
Bug fixes:
TL-36932 Fixed LinkedIn Learning only syncing 1000 courses in some scenarios
TL-37474 Fixed the display of listed information in program and certification reports
Program and certification report builder columns which display lists relating to
the courses they contain, such as course names, course category names and
grades, were not displaying the correct information. This has been fixed.
TL-38060 Fixed the database transaction not closing when a failure occurs during insert_records_via_batch
The database function insert_records_via_batch is sometimes used within a loop.
The caller may decide to continue processing data if inserting a batch fails, by
catching the exception thrown. Previously, the function was not closing the
database transaction if a failure occurred. This could lead to a situation where
further database changes may have been made before the transaction failure was
processed, which might result in the following database changes being lost. Now,
the database transaction within the function is rolled back before the exception
is thrown, allowing further database changes to be made.
TL-38197 Fixed \core\event\course_in_progress event to set the correct value for the objectid field
TL-38509 Fixed PHP 8.1 incompatible code relating to LDAP\Connection
TL-38832 Improved help text when editing a seminars settings
TL-38834 Added a language string for the session timeout modal header
TL-38894 Fixed spacing around search fields in the glossary at low screen widths
TL-38907 Fixed capability error showing up in the organisation and position report filter dialogues
With tenant isolation enabled, when opening the organisation or position dialog
for a report filter, a capability error message was shown in the dialogue. As
organisations and positions are not compatible with isolation the filter now
only show up if the capability check succeeds.
TL-38952 Fixed a typo in the language string "configenablestats"
TL-39003 Improved focus styles of "Find Learning" page
TL-39011 Removed horizontal scrollbar on SCORM activity landing page
TL-39142 Fixed authentication issue in the Google Drive repository on PHP 8.0 and above
TL-39159 Fixed display of program and certification due date dialog
TL-39181 Ensured that the seminar event 'under booking' notification considers the attendance status
The event under minimum booking was only counting bookings which had the status
booked or waitlisted. This meant that it incorrectly counted the number of
bookings if attendance had been recorded. Generally, this would only occur if
the notification was set to be sent "on event" and attendance was recorded on
the same day as the event but before the notification was sent. The number of
bookings is now calculated correctly.
TL-39196 Fixed the rendering of images for external badges
Fixed the external image badges data, which was passed as an object and was
unhandled.
Tui front end framework:
TL-38880 Fixed long popover by setting a max height in the popover component
Release 17.14 (21st December 2023):
Security issues:
TL-39094 Fixed potential XSS in survey name being executed if a user saves a survey
Improvements:
TL-38155 Introduced a new cli script that allows admins finer control of adhoc tasks
This script lives in admin/cli/adhoc_task.php alongside the already existing
admin/cli/scheduled_task.php script.
'php admin/tool/task/cli/adhoc_task.php --help' will list the available options.
Bug fixes:
TL-36932 Fixed LinkedIn Learning only syncing 1000 courses in some scenarios
TL-37474 Fixed the display of listed information in program and certification reports
Program and certification report builder columns which display lists relating to
the courses they contain, such as course names, course category names and
grades, were not displaying the correct information. This has been fixed.
TL-38060 Fixed the database transaction not closing when a failure occurs during insert_records_via_batch
The database function insert_records_via_batch is sometimes used within a loop.
The caller may decide to continue processing data if inserting a batch fails, by
catching the exception thrown. Previously, the function was not closing the
database transaction if a failure occurred. This could lead to a situation where
further database changes may have been made before the transaction failure was
processed, which might result in the following database changes being lost. Now,
the database transaction within the function is rolled back before the exception
is thrown, allowing further database changes to be made.
TL-38197 Fixed \core\event\course_in_progress event to set the correct value for the objectid field
TL-38509 Fixed PHP 8.1 incompatible code relating to LDAP\Connection
TL-38834 Added a language string for the session timeout modal header
TL-38952 Fixed a typo in the language string "configenablestats"
TL-39142 Fixed authentication issue in the Google Drive repository on PHP 8.0 and above
TL-39181 Ensured that the seminar event 'under booking' notification considers the attendance status
The event under minimum booking was only counting bookings which had the status
booked or waitlisted. This meant that it incorrectly counted the number of
bookings if attendance had been recorded. Generally, this would only occur if
the notification was set to be sent "on event" and attendance was recorded on
the same day as the event but before the notification was sent. The number of
bookings is now calculated correctly.
TL-39196 Fixed the rendering of images for external badges
Fixed the external image badges data, which was passed as an object and was
unhandled.
Release 16.20 (21st December 2023):
Security issues:
TL-39094 Fixed potential XSS in survey name being executed if a user saves a survey
Improvements:
TL-38155 Introduced a new cli script that allows admins finer control of adhoc tasks
This script lives in admin/cli/adhoc_task.php alongside the already existing
admin/cli/scheduled_task.php script.
'php admin/tool/task/cli/adhoc_task.php --help' will list the available options.
Bug fixes:
TL-36932 Fixed LinkedIn Learning only syncing 1000 courses in some scenarios
TL-38060 Fixed the database transaction not closing when a failure occurs during insert_records_via_batch
The database function insert_records_via_batch is sometimes used within a loop.
The caller may decide to continue processing data if inserting a batch fails, by
catching the exception thrown. Previously, the function was not closing the
database transaction if a failure occurred. This could lead to a situation where
further database changes may have been made before the transaction failure was
processed, which might result in the following database changes being lost. Now,
the database transaction within the function is rolled back before the exception
is thrown, allowing further database changes to be made.
TL-38834 Added a language string for the session timeout modal header
TL-38952 Fixed a typo in the language string "configenablestats"
Release 15.26 (21st December 2023):
Security issues:
TL-39094 Fixed potential XSS in survey name being executed if a user saves a survey
Improvements:
TL-38155 Introduced a new cli script that allows admins finer control of adhoc tasks
This script lives in admin/cli/adhoc_task.php alongside the already existing
admin/cli/scheduled_task.php script.
'php admin/tool/task/cli/adhoc_task.php --help' will list the available options.
Bug fixes:
TL-38060 Fixed the database transaction not closing when a failure occurs during insert_records_via_batch
The database function insert_records_via_batch is sometimes used within a loop.
The caller may decide to continue processing data if inserting a batch fails, by
catching the exception thrown. Previously, the function was not closing the
database transaction if a failure occurred. This could lead to a situation where
further database changes may have been made before the transaction failure was
processed, which might result in the following database changes being lost. Now,
the database transaction within the function is rolled back before the exception
is thrown, allowing further database changes to be made.
TL-38952 Fixed a typo in the language string "configenablestats"
Release 14.31 (21st December 2023):
Security issues:
TL-39094 Fixed potential XSS in survey name being executed if a user saves a survey
Improvements:
TL-38155 Introduced a new cli script that allows admins finer control of adhoc tasks
This script lives in admin/cli/adhoc_task.php alongside the already existing
admin/cli/scheduled_task.php script.
'php admin/tool/task/cli/adhoc_task.php --help' will list the available options.
Bug fixes:
TL-38060 Fixed the database transaction not closing when a failure occurs during insert_records_via_batch
The database function insert_records_via_batch is sometimes used within a loop.
The caller may decide to continue processing data if inserting a batch fails, by
catching the exception thrown. Previously, the function was not closing the
database transaction if a failure occurred. This could lead to a situation where
further database changes may have been made before the transaction failure was
processed, which might result in the following database changes being lost. Now,
the database transaction within the function is rolled back before the exception
is thrown, allowing further database changes to be made.
TL-38952 Fixed a typo in the language string "configenablestats"
Release 13.39 (21st December 2023):
Security issues:
TL-39094 Fixed potential XSS in survey name being executed if a user saves a survey
Improvements:
TL-38155 Introduced a new cli script that allows admins finer control of adhoc tasks
This script lives in admin/cli/adhoc_task.php alongside the already existing
admin/cli/scheduled_task.php script.
'php admin/tool/task/cli/adhoc_task.php --help' will list the available options.
Bug fixes:
TL-38060 Fixed the database transaction not closing when a failure occurs during insert_records_via_batch
The database function insert_records_via_batch is sometimes used within a loop.
The caller may decide to continue processing data if inserting a batch fails, by
catching the exception thrown. Previously, the function was not closing the
database transaction if a failure occurred. This could lead to a situation where
further database changes may have been made before the transaction failure was
processed, which might result in the following database changes being lost. Now,
the database transaction within the function is rolled back before the exception
is thrown, allowing further database changes to be made.
TL-38952 Fixed a typo in the language string "configenablestats"