FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
9b037a0d-ef2c-11e2-b4a0-8c705af55518gallery -- multiple vulnerabilities

Red Hat Security Response Team reports:

Gallery upstream has released 3.0.9 version, correcting two security flaws:

Issue #1 - Improper stripping of URL fragments in flowplayer SWF file might lead to reply attacks (a different flaw than CVE-2013-2138).

Issue #2 - gallery3: Multiple information exposure flaws in data rest core module.


Discovery 2013-06-28
Entry 2013-07-17
gallery3
< 3.0.9

CVE-2013-2240
CVE-2013-2241
http://sourceforge.net/apps/trac/gallery/ticket/2073
https://bugzilla.redhat.com/show_bug.cgi?id=981197
http://sourceforge.net/apps/trac/gallery/ticket/2074
https://bugzilla.redhat.com/show_bug.cgi?id=981198
http://galleryproject.org/gallery_3_0_9