The developer of iGallery, a Gallery 2 client for iOS devices, has developed a new Gallery 3 client from scratch - iGallery 3.
They are running a public beta test to make sure everything is working as well as possible. If you're interested in joining the beta program contact them by e-mailing your device type (e.g. "iPhone 5") and your device UDID (you can find this at http://whatsmyudid.com/) to email@example.com.
Read on for more detailed information and screenshots.
Gallery 3.0.9 is now available! We are still hard at work on 3.1, but in the meantime a few more minor security issues needed to be resolved. We've fixed them and recommend that you upgrade to 3.0.9 ASAP. Thanks to Malte Batram and Dhaval Chauhan for their responsible disclosure. We will be rewarding them cash bounties as part of our Security Bounty Program.
We need you! (Or maybe someone you know.) Gallery 3 is not available in many major Linux distributions via their package managers. We think it should be, but we don't have the time or know-how to make it happen. If you know a thing or two about Linux package management and have been itching to contribute to Gallery, now is your chance:
- RedHat/Fedora/etc have access to Gallery 3 via EPEL already. Hoorah!
- Ubuntu seems to only have Gallery 2: http://packages.ubuntu.com/quantal/gallery2
- Debian is missing Gallery 3 due to some licensing things that we need help sorting out. See the bug and the discussion for details.
- Gentoo seems stuck on Gallery 2: http://gentoo-portage.com/www-apps/gallery.
- And of course the 1000s of other Linux distributions out there...
If there is a way that you are not able to get Gallery where you would like to, or if you can help out with any of the above, please let us know here or hop on the gallery-devl e-mail list and let's make it happen!
There's been discussion among team members about trying to clarify the Gallery Project's identity. To those ends, the Project's web sites, gallery.menalto.com and codex.gallery2.org, have moved to www.galleryproject.org and codex.galleryproject.org.
After several extensive internal and external security audits which discovered 22 distinct vulnerabilities, we are releasing Gallery 3.0.4 as a security release. All of the issues require that someone with malicious intent either have an account with edit permissions, or trick a user with edit permissions into clicking on a malicious link. In most cases, this can only lead to a possible XSS vulnerability, but in several instances it allows arbitrary PHP code execution.
We thank the following individuals for reporting these issues: Chalk, Mateusz Goik, James 'albino' Kettle, Emanuel Bronshtein, and Sergey Markov. Due to their efforts, they will each be receiving bounties of $1000 for their help in making Gallery more secure. Read our Bounties page for details and how to submit any security issues you find.
We strongly recommend that all users of Gallery 3 upgrade as soon as possible.