Updating Moodle: Is It Necessary? When? Why?
Long gone are the tranquil days when software updates were infrequent—perhaps every two or three years, if we were lucky. It wasn’t something that needed to be factored into a short-term budget. Everything was simpler back then.
Then came the cyberattacks—perpetrated by individuals who exploited this state of inaction and stagnation. They found vulnerabilities and gained access to data, systems, and more. Open-source software, such as the Moodle Learning Management System (LMS), was particularly affected.
That’s why Moodle, already a mature and robust platform, has professionally organized its update release schedule. Users must pay close attention to these updates for the sake of their virtual campuses. You can find more information here: Moodle Version History.
The Moodle development team draws from various sources for review, including:
- Moodle Tracker: A virtual space where advanced users post their concerns and proposals for peer and Moodle team review.
- Security and Vulnerability Reporting Form: Used to report security issues.
- Moodle Developers: They continuously test the LMS.
From there, valid proposals are filtered, and the process of programming, testing, and integration with existing Moodle code begins. This culminates in the release of a new program version:
- Major Version (e.g., 3.11, 4.1, 4.2, and 4.3): These are released every 6 months and include new features, significant functionality enhancements, visual design modifications, bug fixes, and vulnerability patches.
-
Minor Versions (e.g., 3.11.1, 3.11.2, 3.11.3): The last number indicates the minor version. Approximately every 2 months, Moodle releases minor versions for each major version. These updates address operational and security issues but do not introduce new features or significant modifications.
After 12 to 18 months from the release of a major version, Moodle discontinues support for that version. In other words, minor versions for that major version are no longer published, leaving it without any further updates and vulnerable to modern attacks.
This is when organizations using the virtual campus must seriously consider upgrading their software to a major version that still receives bug fixes and security updates (minor versions).
On the official Moodle download portal, you’ll find the following categories:
-
- Latest Releases: These versions receive minor security and bug fix updates.
- Other Supported Releases: Also receive minor security-only updates.
- Legacy Releases: No longer receive any updates.
Our professional advice? Never maintain a Legacy Release. If you have one, update it promptly. Legacy versions are risky, lacking updates, and susceptible to attacks. Additionally, remember to update any extensions and themes you’ve installed. Consult your hosting service, as server component updates may also be necessary.
If your Moodle version is not yet legacy, check when Moodle support ends: determine the date when it will no longer receive minor updates, and plan your version upgrade accordingly.
You can find this information here: Moodle Release Dates.
However, it is not recommended to update your Moodle LMS to the latest available version (Latest Release), unless it is absolutely necessary. This is because many extensions and visual themes are not updated with the same frequency. It is quite possible that developers of these extensions and themes may take several months to release a version compatible with the latest Moodle version.
Therefore, seek advice from experienced professionals regarding Moodle updates and its extensions, especially if you are operating with Legacy Releases. These cases are the most complex, as legacy versions can become vulnerable to attacks and lack security updates and bug fixes.
Remember that maintaining a Legacy Release is risky and not recommended. If you are currently using a legacy version, update it as soon as possible. Additionally, make sure to check for updates to any extensions and themes you have installed. Consult with your hosting service, as server component updates may also be necessary.
If your Moodle version is not yet a Legacy Release, verify when Moodle support ends: determine the date when it will no longer receive minor updates, and plan your version upgrade accordingly. You can find this information on the Moodle Release Dates page.
Feel free to ask if you need further assistance! 😊
More on e-learning
Installing Moodle is a good start. But that is not enoughMoodle isn't just about installation. Successful elearning requires planning, expertise, and continuous effort, not a quick fix solution. […]- The issue of ‘secure’ assessments in online modeThe widespread adoption of virtual courses introduces new instances of old problems, specifically, 'secure' or fraud-proof assessments. […]
- Massive Virtual Assessments: Dealing with Dropped Exams and Frustrated UsersThe expected concurrent users are one of the factors that most significantly impact the costs of a virtual course project. […]
