Improvements

The issues mentioned under the section improvements are considered as new functionality, user experience improvements and bug fixes.

‍

Technical updates, including performance improvements - SG-255

 Part of the development process is to keep all used software libraries up to date. This not only include the fixes applied based on security vulnerabilities as mentioned under the section Security, but also improved or even new libraries.

This is a constant process that standard is not mentioned in the release notes. This release has no direct visible new functionality for administrators or users, but as part of the technical updates the loading and visualisation of study guide information to the users has been changed. The change introduces a standardised data retrieval process, independent of the education component type, that leads to easier maintenance and more important a better performance for the users.

‍

Security

An integral part of our develop and build processes is automatic scanning for known security vulnerabilities. The vulnerabilities will be fixed based on their impact, which means that in some cases an immediate hot-fix will be applied, and in other cases the vulnerability will be fixed in the current or next Sprint (release). The security section provides an overview of the vulnerabilities mitigated.

‍

This release mitigates the following vulnerabilities:

• CVE-2024-38820 (5.3)
• CVE-2024-38821 (8.19)
• CVE-2024-38819 (8.19)
• CVE-2024-21538 (7.5)

For more information on reported vulnerabilities, see the central database of vulnerabilities.

‍

‍For more guidance on configuration and setup of Study Guide, use the relevant Study Guide manual.