Mahara 1.10.5

Milestone information

Project:
Mahara
Series:
1.10
Version:
1.10.5
Released:
 
Registrant:
Robert Lyon
Release registered:
Active:
No. Drivers cannot target bugs and blueprints to this milestone.  

Download RDF metadata

Activities

Assigned to you:
No blueprints or bugs assigned to you.
Assignees:
2 Aaron Wells, 2 Robert Lyon
Blueprints:
No blueprints are targeted to this milestone.
Bugs:
7 Fix Released

Download files for this release

File Description Downloads

Release notes 

Mahara 1.10.5 Release Notes

This is a stable release of Mahara 1.10. Stable releases are fit for
general use. If you find a bug, please report it to the tracker:

https://bugs.launchpad.net/mahara/+filebug

This release includes an upgrade path from 1.1.0. If you wish to
upgrade, we encourage you to make a copy of your website and test the
upgrade on it first, to minimise the effect of any potential
unforeseen problems.

Changes from 1.10.4:

 * Bug 1460368: Even if you disallow anonymous comments at the site level, you can still place anonymous comments on artefacts
 * Bug 1472439: XSS in "add to watchlist" link on artefact detail screen
 * Bug 1434927: Objectionable content inbox notification doesn't name reporter
 * Bug 1444925: Admin can't see objectionable content in forums if not admin in the group
 * Bug 1471604: Terms and conditions not showing on register page for multi institutions
 * Bug 1463629: Prevent HTTP iframes on HTTPS sites
 * Bug 1470281: Use "nosniff" header to prevent potential XSS via untrusted files in IE

Changelog 

View the full changelog

Version bump for 1.10.5
Adding the 'from' user to the objectionable notification (Bug #1434927)
Use nosniff header to prevent potential XSS via untrusted files in IE
Bug 1471604: Terms & Conditions not displaying on register page
HTML-escape page title in watchlist JSON response (Bug 1472439)
Prevent HTTP iframes on an HTTPS site
Bug 1460368: stopping anonymous comments on artefacts
Passing the objection=1 param to the objection url (Bug #1444925)
Version bump back to 1.10.5testing

0 blueprints and 7 bugs targeted

Bug report Importance Assignee Status
1472439 #1472439 XSS in "add to watchlist" link on artefact detail screen 3 High Aaron Wells  10 Fix Released
1434927 #1434927 Objectionable content inbox notification doesn't name reporter 4 Medium Robert Lyon  10 Fix Released
1444925 #1444925 Admin can't see objectionable content in forums if not admin in the group 4 Medium   10 Fix Released
1460368 #1460368 Even if you disallow anonymous comments at the site level, you can still place anonymous comments on artefacts 4 Medium   10 Fix Released
1471604 #1471604 Terms and conditions not showing on register page for multi institutions 4 Medium Robert Lyon  10 Fix Released
1463629 #1463629 Prevent HTTP iframes on HTTPS sites 5 Low Aaron Wells  10 Fix Released
1470281 #1470281 Use "nosniff" header to prevent potential XSS via untrusted files in IE 5 Low   10 Fix Released
This milestone contains Public information
Everyone can see this information.