Due to the severity of the problems that were fixed in this release and the fact that they affect all Mahara sites, we urge Mahara administrators to upgrade now. These releases do not add any new functionality or change any existing ones; they are strictly security-related.
If you would like more information on the vulnerabilities that have been fixed, see the five advisories that were just posted on the security forum:
We recommend that all Mahara administrators subscribe to these security announcements. You may also want to follow us on Identica or Twitter.
Please note that this will likely be the last security update for the 1.2 series since support for that series will be dropped as soon as Mahara 1.4 is released. If you are still running Mahara 1.2, you must plan to upgrade to 1.3 or 1.4 soon.
The Mahara Release Maintainers
]]>