Helen: Thanks for the link, our Moodle sites are hosted in a Linux environment and I believe I've used the Linux patch command correctly: patch -p0 < MSA-10-0001.diff (after copying the MSA-10-0001.diff file into the same location as the file to be patched).
Tim: The URL came from the workaround section in the Moodle Security News (http://moodle.org/security/). The page contains bugfix workarounds for most of the security bugs, but does not state to which versions of Moodle these workarounds apply. I understood that one can either apply the solution (by upgrading to Moodle 1.9.8) or implement the workarounds listed. Should I be able to apply the workarounds to my Moodle 1.9x deployments?
Security and privacy
Moodle security patching documentation
This discussion has been locked because a year has elapsed since the last post. Please start a new discussion topic.