Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to (1) hotlink protection in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified item information disclosure attacks in the Core module Gallery application, (5) the slideshow in the Slideshow module, and (6) multiple Print modules.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Gallery | Menalto | * | 2.2.3 (including) |
| Gallery2 | Ubuntu | dapper | * |
| Gallery2 | Ubuntu | edgy | * |
| Gallery2 | Ubuntu | feisty | * |
| Gallery2 | Ubuntu | gutsy | * |
| Gallery2 | Ubuntu | upstream | * |
References
- http://bugs.gentoo.org/show_bug.cgi?id=203217
- http://gallery.menalto.com/gallery_2.2.4_released
- http://osvdb.org/41662
- http://osvdb.org/41663
- http://osvdb.org/41664
- http://osvdb.org/41665
- http://osvdb.org/41666
- http://osvdb.org/41667
- http://secunia.com/advisories/28898
- http://security.gentoo.org/glsa/glsa-200802-04.xml
- http://bugs.gentoo.org/show_bug.cgi?id=203217
- http://gallery.menalto.com/gallery_2.2.4_released
- http://osvdb.org/41662
- http://osvdb.org/41663
- http://osvdb.org/41664
- http://osvdb.org/41665
- http://osvdb.org/41666
- http://osvdb.org/41667
- http://secunia.com/advisories/28898
- http://security.gentoo.org/glsa/glsa-200802-04.xml