On 12/5 Martin Dougiamas announced the release of updated Moodle versions for both 1.8 and 1.9:
Moodle 1.9.7 and Moodle 1.8.11 were recently released. Apart from a range of bug fixes and small improvements, ten security vulnerabilities (2 critical, 6 major and 2 minor) have been discovered and fixed since Moodle 1.9.6. (Thanks as usual to the reporters and to all the guys responsible for fixing these serious issues).
WE RECOMMEND ALL MOODLE SITES UPGRADE THEIR SITES TO ONE OF THESE VERSIONS AS SOON AS POSSIBLE.
As per our usual procedure, all 45,000 admins of registered Moodle sites were already privately notified over a week ago.
For more information about the releases use the links above or visit Moodle.org for additional information.