Home » ChiliProject 1.5.3 released

ChiliProject 1.5.3 released

ChiliProject 1.5.3 has just been released. This release is a security release to fix numerous major security bugs that were discovered in ChiliProject 1.5.2. It contains no other bug fixes or new features and is released for users who are unable to upgrade to ChiliProject 2.3.0. It is suitable for use on production websites running ChiliProject 1.x and we highly recommend that 1.x users download the release.

Download ChiliProject 1.5.3

What’s included

1.5.3 includes 1 minor security fix that was back ported from ChiliProject 2.3.0.

  • Bug #619: Redmine.pm allows anonymous read access to repositories even if Anonymous role prohibits it

Unless you use the Repository integration, you do not need to update your installation as the fix of Redmine.pm is the only update included in this release.

Contributors to 1.5.3

I’d like to thank all of the contributors to the 1.5.3 release.

  • Holger Just
  • Jan Schulz-Hofen

If you think you have found a security bug in ChiliProject please report it to the security team privately so we can follow responsible disclosure.

What’s Next?

The 1.x versions of ChiliProject are officially in maintenance mode and will only be getting security updates from now on. We recommend upgrading to the current stable version of ChiliProject in order to get general bug fixes and features, currently ChiliProject 2.3.0.

One comment

Comments are closed.