-
Bug
-
Resolution: Not a bug
-
Minor
-
None
-
4.1.11
-
None
-
MOODLE_401_STABLE
Hi,
Recently there are multiple vulnerabilities were identified in PHP, can refer below reference for more details :
- https://portal.auscert.org.au/bulletins/ASB-2024.0111.2/
- https://www.php.net/ChangeLog-8.php
- https://devco.re/blog/2024/06/06/security-alert-cve-2024-4577-php-cgi-argument-injection-vulnerability-en/
Currently, our Moodle version is 4.1.11, running on PHP 8.0.30 with SAML login integration.
However, PHP 8.0 has reached its end-of-life and is no longer supported. In an attempt to address this, we tried upgrading from PHP 8.0.30 to PHP 8.1.29. Unfortunately, this resulted in the corruption of the Moodle 4.1.11 SAML login functionality, rendering the entire Moodle site inaccessible.
We are inquiring whether there will be an update patch available for Moodle 4 that supports PHP 8.1 or higher.
Thank you for your attention to this matter.