• info
• discussion
• exploit
• solution
• references

Gallery Multiple Remote Vulnerabilities

Solution:
The vendor has released Gallery 1.4.4-pl5 to address these issues.

Gentoo has released advisory GLSA 200501-45 to address these issues. Gentoo users may carry out the following commands to update their computers:

# emerge --sync
# emerge --ask --oneshot --verbose ">=www-apps/gallery-1.4.4_p6"

Note: Users with the vhosts USE flag set should manually use
webapp-config to finalize the update.


Gallery Gallery 1.4.3 -pl2

• Gallery 1.4.4-pl5
  http://sourceforge.net/project/showfiles.php?group_id=7130&package_id= 7239&release_id=299701

Gallery Gallery 1.4.3 -pl1

• Gallery 1.4.4-pl5
  http://sourceforge.net/project/showfiles.php?group_id=7130&package_id= 7239&release_id=299701

Gallery Gallery 1.4.4 -pl2

• Gallery 1.4.4-pl5
  http://sourceforge.net/project/showfiles.php?group_id=7130&package_id= 7239&release_id=299701

Gallery Gallery 1.4.4 -pl3

• Gallery 1.4.4-pl5
  http://sourceforge.net/project/showfiles.php?group_id=7130&package_id= 7239&release_id=299701

Gallery Gallery 1.4.4 -pl4

• Gallery 1.4.4-pl5
  http://sourceforge.net/project/showfiles.php?group_id=7130&package_id= 7239&release_id=299701