Loading...

XML

Word

Printable

Affected Branches:
MOODLE_31_STABLE, MOODLE_32_STABLE
Fixed Branches:
MOODLE_33_STABLE
Epic Link:
Libraries 3.3
Testing Instructions:
Hide

Setup email in your moodle instance

Create some users with valid emails

Do some actions that results in sending of emails (forgotten password, send message, etc.)

Verify emails are received at the accounts specified in 2.

Tip: If it fails, you can use email debugging to get messages from PHPMailer.

Please also check the third party library list at [Site administration ► Development ► Third party libraries] to ensure that the version number is correct.
Show
Setup email in your moodle instance Create some users with valid emails Do some actions that results in sending of emails (forgotten password, send message, etc.) Verify emails are received at the accounts specified in 2. Tip: If it fails, you can use email debugging to get messages from PHPMailer. Please also check the third party library list at [Site administration ► Development ► Third party libraries] to ensure that the version number is correct.

In ~~MDL-57531~~ we fixed the recently reported security issues in phpmailer by validating before sending to phpmailer.

This issue is to upgrade the library, following that mitigation of the security issue

is blocked by

MDL-57531 Address the vulnerabilities in recent PHPMailer 5.2.x

Participants:: Ankit Agarwal, CiBoT, Dan Poltawski, David Monllaó, David Mudrák (@mudrd8mz), John Okely, Marcus Green, Matteo Scaramuccia