First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 238113
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Robert Buchholz <rbu@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 238113 depends on: Show dependency tree
Bug 238113 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2008-09-19 14:57 0000 
CVE-2008-3662 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3662):
  Gallery before 1.5.9, and 2.x before 2.2.6, does not set the secure
  flag for the session cookie in an https session, which can cause the
  cookie to be sent in http requests and make it easier for remote
  attackers to capture this cookie.

------- Comment #1 From Robert Buchholz 2008-09-19 15:27:52 0000 ------- 
CVE-2008-4129 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4129):
  Gallery before 1.5.9, and 2.x before 2.2.6, does not properly handle
  ZIP archives containing symbolic links, which allows remote
  authenticated users to conduct directory traversal attacks and read
  arbitrary files via vectors related to the archive upload (aka zip
  upload) functionality.

CVE-2008-4130 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4130):
  Cross-site scripting (XSS) vulnerability in Gallery 2.x before 2.2.6
  allows remote attackers to inject arbitrary web script or HTML via a
  crafted Flash animation, related to the ability of the animation to
  "interact with the embedding page."

------- Comment #2 From Robert Buchholz 2008-09-26 15:18:16 0000 ------- 
*** Bug 238773 has been marked as a duplicate of this bug. ***

------- Comment #3 From Peter Volkov 2008-09-29 07:39:39 0000 ------- 
Bumped in the tree. Arch teams, please, stabilize.

Target keywords:
gallery-2.2.6: alpha amd64 hppa ppc ppc64 sparc x86
gallery-1.5.9: alpha amd64 hppa ppc sparc x86

------- Comment #4 From Raúl Porcel 2008-09-29 09:15:04 0000 ------- 
alpha/sparc/x86 stable

------- Comment #5 From Jan Schubert 2008-09-29 11:37:10 0000 ------- 
Thx, seem to work fine on my amd64 (intel) platform.

------- Comment #6 From Jeroen Roovers 2008-09-29 20:00:56 0000 ------- 
Both stable for HPPA.

------- Comment #7 From Markus Rothe 2008-09-30 10:13:54 0000 ------- 
ppc64 stable

------- Comment #8 From Tobias Scherbaum 2008-10-01 17:50:28 0000 ------- 
ppc stable

------- Comment #9 From Markus Meier 2008-10-06 20:18:51 0000 ------- 
amd64 stable, all arches done.

------- Comment #10 From Pierre-Yves Rofes 2008-10-09 21:56:54 0000 ------- 
time for GLSA decision, I vote yes.

------- Comment #11 From Gunnar Wrobel 2008-10-11 19:02:06 0000 ------- 
Removed vulnerable versions. webapps done.

------- Comment #12 From Tobias Heinlein 2008-10-18 20:30:32 0000 ------- 
YES too, request filed.

------- Comment #13 From Tobias Heinlein 2008-11-10 17:55:08 0000 ------- 
GLSA 200811-02, thanks everyone, sorry about the delay.
First Last Prev Next    No search results available      Search page      Enter new bug