Release Notes: This release adds no new features. It fixes minor information leakage in Gallery 2.1 and 2.1.1a, and a major session ID disclosure in all versions prior to Gallery 2.1. Note that these flaws only affect installations where Gallery's storage folder is accessible directly from the Web, which is strongly discouraged during the installation process.
Release Notes: Various bugfixes were made. There were no security enhancements.
Release Notes: This bugfix release resolves problems with Postgres7, Oracle, and DB2. It includes minor bugfixes for the imageblock module, and fixes some very rare permission issues in the toolkit (archiveupload, dcraw, ffmpeg, imagemagick, netpbm, and zipcart) modules. New in this release is the Gallery2 Preinstaller. This tool is a tiny download that will download and unpack Gallery2 on your server for you, saving you a lot of download and upload time. This is very useful if you're using FTP.
Release Notes: Ten new modules were added, including RSS, ratings, picasa2, google sitemaps, and more. This release includes major performance improvements, security fixes, a cleaner user interface, many code improvements, and lots of bugfixes.
Release Notes: This release fixes a local file inclusion exploit in the upgrade and installation code.
Release Notes: Ten new modules were added, including RSS, ratings, picasa2, and more. This release includes major performance improvements, security fixes, a cleaner user interface, many code improvements, and lots of bugfixes.
Release Notes: This releases fixes a minor XSS exploit and an exploit in the session code that could allow users to remotely delete session files.
Release Notes: Ten new modules were added, including RSS, ratings, picasa2, and more. Major performance improvements, a cleaner user interface, tons of code improvements, and bugfixes were done.
Release Notes: This release fixes a very major data loss issue with the zip download component and a very minor security problem where a user with write access to a server could create a specially formatted file and coerce someone with owner privileges in the Gallery to click on a specially formatted link, which could modify stored album data and possibly lead to local code execution.