Upcoming Moderate Security Fix for edx-platform on 2024-01-12

feanil · January 10, 2024, 3:40pm

A security patch for openedx/edx-platform will be added to the Quince release and to the current github master branch around 2024-01-12T15:00:00Z.

It will fix one security defect with a “moderate” CVSS 3.1 severity rating.

Details will be published here after release: GitHub security advisory.

feanil · January 12, 2024, 8:21pm

The security fix has been published.

master:
XBlock custom auth does not respect JWT Scopes · Advisory · openedx/edx-platform · GitHub
quince.master
fix(quince): add `JwtRestrictedApplication` check to XBlock callback by Agrendalath · Pull Request #34047 · openedx/edx-platform · GitHub

Topic		Replies	Views
Upcoming Security Fix for edx-platform on 2024-05-17 Security	1	182	May 17, 2024
Security: Upcoming Security Release for edx-platform 2024-07-25 Security edx-platform	1	58	July 25, 2024
Security: Upcoming Security Release for edx-platform on 2024-06-17 Security	2	161	June 17, 2024
Security: Upcoming Security Release for edx-platform on 2023-07-25 Security	1	329	July 25, 2023
Git checkout open-release/quince.master Working Groups	0	305	October 10, 2023

Upcoming Moderate Security Fix for edx-platform on 2024-01-12

Related topics