RSS

Bloggers

Brett Profitt
All posts
Twitter

Cash Costello
All posts
Twitter

Evan Winslow
All posts
Twitter

Juho Jaakkola
All posts
Twitter

Matt Beckett
All posts
Twitter

PaweĊ‚ Sroka
All posts
Twitter

Steve Clay
All posts
Twitter

Search

Blog tagcloud

    Dec
    21st
    by
    Cash Costello

    Elgg 1.8.2 released!

    We are pleased to release the 1.8.2 version of Elgg. We closed over 60 bug tickets in making this release. Bugs that were fixed include

    • Creation of default widgets when users register
    • Insertion of a very small thumbnail by the embed plugin
    • Missing links to site pages in the footer
    • Incorrect activity filtering
    • URL creation involving usernames with non-ASCII characters
    • User picker display raw HTML rather than a list of users

    Read more

    Dec
    09th
    by
    Cash Costello

    The November London Elgg Meetup

    We are pleased to have a guest blog post from Laura Gill of Surevine. She coordinated the first London Elgg meetup. Here is her report of what happened for those of us who could not attend:

     

    The first (of what we hope will be many!) London Elgg Meetup took place in November, at the Silicon Roundabout in East London. The event was set up to bring together developers, contributors and users of Elgg, along with anyone else who wanted to find out more.

    The night was a great success – we had a video link from Cash Costello talking about the status of Elgg development and his upcoming book; an introduction to Elgg 1.8 from Kevin Jardine; looked at “Elgg-shaped circles” with John Atherton; had an insight into Elgg in Healthcare from Malcolm Newbury and a reminder from Alec Muffett that “a platform is for life, not just for Christmas”!

    The locally-brewed pale ale flowed, mountains of pizza were eaten… and most importantly, some great conversations were shared.

    The slides and video from the night can be found here http://www.slideshare.net/LdnElggMeet.

    A big thanks goes to Surevine for sponsoring the event, Lucila Campos and Susana Cipriota from Condiminds for invaluable tips and advice on how to arrange the night, and of course Brett Profitt and Cash Costello for helping me to make this event such a success.

    Nov
    16th
    by
    Cash Costello

    Elgg 1.8.1 released

    Elgg 1.8.1 is now available for download at http://www.elgg.org/. 197 tickets were closed between 1.8.0 and this release so a lot of work has gone into this version. A summary change log is available here.

    Several developers made contributions to this release:

    • Brett Profitt
    • Cash Costello
    • Evan Winslow
    • germanazo
    • Janek Lasocki-Biczysko
    • Ravindra Nath Kakarla
    • sembrestels
    • Steve Clay

    We also had many people report bugs on our bug tracker. Thank you!

    Finally, several community members volunteered to test this version before release:

    • Starphysique
    • R.Cerceau
    • Randy Brito
    • Purus
    • Juho Jaakkola
    • imoni
    • gastre
    Thanks to everyone who contributed to this release!

    Oct
    20th
    by
    Brett Profitt

    Elgg 1.7.14 released

    Elgg 1.7.14 has been released to address security vulnerabilities in all versions of Elgg 1.7, as well as a severe bug in Elgg 1.7.12 and 1.7.13. Special thanks to Jeroen Dalsem of Coldtrick IT Solutions for reporting the security issue.

    The security vulnerability is a possible SQL injection vector, but has a limited scope.

    The bug fix was for a change in the access system in 1.7.12 that could prevent new users from signing up.

    It is important to upgrade to Elgg 1.7.14 to give your users the best and safest experience on your Elgg-based network.

    Oct
    12th
    by
    Brett Profitt

    Elgg 1.8.1 beta 1 released!

    Elgg 1.8.1 beta 1 has been released to address a number of bugs discovered in Elgg 1.8.0. This beta is the first bug fix release for the 1.8 branch and contains many bug fixes and enhancements, including:

     Enhancements:

    • New group activity widget for user dashboard.
    • Added more sprites.
    • version.php information cached instead of loaded 100s of times.
    • Added class elgg-autofocus to add focus on inputs when the page loads.
    • Admins can edit user avatars again.
    • Added a filter for non-bundled plugins in plugin admin.
    • Improvements to admin area theme.

    Read more

    Oct
    08th
    by
    Brett Profitt

    Elgg 1.7.13 released

    Update: A serious bug was introduced in Elgg 1.7.12 that it still not fixed in this release. The bug causes a user to see an exception when creating an account if the site is using the default widgets plugin. We recommend that you revert to 1.7.11. Download that version and copy its files over to downgrade.

    Elgg 1.7.13 has been released to address a serious bug some users encountered when trying to upgrade to 1.7.12 and a mild security vulnerability.

    The upgrade bug prevented some users from being able to run the upgrade.php script.

    The security vulnerability was in the livesearch endpoint and could cause an SQL query exposure using a specially crafted URL.

    In addition to these bugfixes, a few other enhancements were included in 1.7.13:

     

    • Files that are too large to upload will be rejected with an error message by the Files plugin. Previous versions of Elgg would save these as empty files.
    • The pages plugin forwards to the All Pages page when there isn't a valid page owner.

    All users of Elgg 1.7 are encouraged to upgrade to 1.7.13 as soon as possible.

    Sep
    29th
    by
    Brett Profitt

    Elgg 1.7.12 released

    Update: A serious bug was introduced in this version. It results in White Screen of Deaths (WSODs) when non-logged in visitors hit certain pages. We recommend that you revert to 1.7.11. Download that version and copy its files over to downgrade.

    Elgg 1.7.12 has been released to address bugs in Elgg 1.7.11. Changes include:

    • Blog plugin supports group archives.
    • Better detection of file types in File plugin.
    • Catching exceptions on profile icon lookup to prevent problems that can occur when listing users with corrupt icon information.
    • Only admins can run unit tests.
    • Dragging widgets works in IE 9.
    For those who have migrated to 1.8, we will soon release a beta of 1.8.1 to address bugs found in 1.8.0.1.

    Sep
    24th
    by
    Cash Costello

    Elgg's New Menu System: Dynamic menus

    This is the second post in a series on Elgg's new menu system. Last time I explained how to register a menu item during initialization and just before the menu is rendered. In this post, I explain how to take advantage of the just-in-time registration to create dynamic menus.

    Read more

    Sep
    05th
    by
    Brett Profitt

    Elgg 1.8.0 released

    After over a year of development and more than 800 tickets closed, we're pleased to announce the availability of Elgg 1.8.0! In addition to fixing bugs, in Elgg 1.8.0 we focused on improving the end-user experience and making it easier for Elgg developers to build Elgg sites.

    Read more

    Aug
    15th
    by
    Brett Profitt

    Elgg 1.7.11 released

    Elgg 1.7.11 has been released with security improvements. All users are advised to upgrade immediately.

    The following security enhancements were made:

    * Aung Khant from the YEHG reported and helped to fix a XSS vector in the Embed plugin and an SQL exposure vector in the Search plugin.

    * Lostmon Lords reported and helped to fix an SQL injection vector in the search plugin.

    Tons of thanks to these two people, who have been helping us find and fix security problems for the last few releases!

    1.7.11 also includes a few minor bugfixes:

    * Filtering by content works again in the activity stream.

    * Dragging works in IE 9 for profile widgets.

    Again, uses are encouraged to upgrade to Elgg 1.7.11 ASAP to keep their networks and users safe.