Just in time for the holidays, Gallery 2.2.4 is now available for download. This release fixes critical security issues, no new features have been added. Due to the severity of these issues users of all previous Gallery 2 versions are strongly encouraged to upgrade to version 2.2.4 as soon as possible! All issues addressed in this release were discovered through an extensive internal security audit.
Since 2.2.4 is a security release, it shares the same installation requirements as 2.2.3. If you haven't upgraded to 2.2.x yet, please review the Gallery 2.2 release notes for highlights of changes and the requirements. Read on for more details and upgrade instructions.
In an effort to centralize Gallery integration projects, you can now find documentation and dedicated forums for integrations on our website.
While the new integration forums and the new home for documention of integrations are already in place, we are still busy importing the existing forum discussions and documentations from the old integration websites, like www.galleryembedded.com.
This summer, the Gallery project participated in the third Google Summer of Code. The Summer of Code is a program, funded by Google, to essentially give students a paid internship with Open Source projects. At the end of August, the third Summer of Code completed successfuly, not only for Gallery, but each of the 130 other mentoring organizations.
Gallery 2.2.3 is now available for download. This release adds no new features. It fixes critical application security bugs in the WebDAV and Reupload modules. If the WebDAV or Reupload modules are active in your Gallery we strongly recommend that you either disable them, upgrade them via Downloadable Plugins or perform a complete upgrade to version 2.2.3. Thanks go to Merrick Manalastas and Nicklous Roberts for reporting the issues to the Gallery Security team!
Gallery 2.2.3 is a small security upgrade from 2.2.2 and has the same requirements as 2.2.2. If you haven't upgraded to 2.2.x yet, please refer to the release announcement of Gallery 2.2 for highlights of changes and the requirements of the Gallery 2.2 release.
Read on for more details and upgrade instructions...
Gallery 1.5.7 is now available for download. This release fixes one very minor security issue, fixes a few small bugs, and makes a significant amount of text more sensible. Even though this release has no major security fixes, we recommend that all users of Gallery 1.5.6 and earlier upgrade to this release to be as bug free and secure as possible. You can download 1.5.7 from the Gallery 1 download page on SourceForge. Upgrade instructions are available on our documentation site.
If you've contributed to translations for Gallery 1 in the past, or would be interested in helping out, our translations for Gallery 1 are fairly far behind! Please join the gallery-translations mailing list and send an introduction to get started.
The Gallery team is very excited to announce a new bounty program, where we pay you for helping us out by finding security problems in Gallery products or by contributing code. Additionally, you can pitch in to the fund to reward people that fix bugs or write features you want to see fixed or implemented! We're pledging $5000 to get this started, and you can start contributing right now! Read on for the details of this program.