FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-12-18 19:03:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
9b037a0d-ef2c-11e2-b4a0-8c705af55518	gallery -- multiple vulnerabilities Red Hat Security Response Team reports: Gallery upstream has released 3.0.9 version, correcting two security flaws: Issue #1 - Improper stripping of URL fragments in flowplayer SWF file might lead to reply attacks (a different flaw than CVE-2013-2138). Issue #2 - gallery3: Multiple information exposure flaws in data rest core module. Discovery 2013-06-28 Entry 2013-07-17 gallery3 < 3.0.9 CVE-2013-2240 CVE-2013-2241 http://sourceforge.net/apps/trac/gallery/ticket/2073 https://bugzilla.redhat.com/show_bug.cgi?id=981197 http://sourceforge.net/apps/trac/gallery/ticket/2074 https://bugzilla.redhat.com/show_bug.cgi?id=981198 http://galleryproject.org/gallery_3_0_9

VuXML ID

Description

9b037a0d-ef2c-11e2-b4a0-8c705af55518

gallery -- multiple vulnerabilities

Red Hat Security Response Team reports:

Gallery upstream has released 3.0.9 version, correcting two security flaws:

Issue #1 - Improper stripping of URL fragments in flowplayer SWF file might lead to reply attacks (a different flaw than CVE-2013-2138).

Issue #2 - gallery3: Multiple information exposure flaws in data rest core module.

Discovery 2013-06-28
Entry 2013-07-17
gallery3

< 3.0.9

CVE-2013-2240
CVE-2013-2241
http://sourceforge.net/apps/trac/gallery/ticket/2073
https://bugzilla.redhat.com/show_bug.cgi?id=981197
http://sourceforge.net/apps/trac/gallery/ticket/2074
https://bugzilla.redhat.com/show_bug.cgi?id=981198
http://galleryproject.org/gallery_3_0_9