Bug 429312 (CVE-2007-6691)

Summary: CVE-2007-6691 Gallery2 multiple vulnerabilities
Product: [Other] Security Response Reporter: Lubomir Kundrak <lkundrak>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED CURRENTRELEASE QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: john
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6691
Whiteboard:
Fixed In Version: gallery2-2.2.4-1 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-01-18 17:17:43 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Lubomir Kundrak 2008-01-18 17:12:52 UTC 
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-6691 to the following vulnerability:

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to (1) "hotlink protection" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified "item information disclosure attacks" in the Core module Gallery application, (5) the slideshow in the Slideshow module, and (6) multiple Print modules.

References:

http://gallery.menalto.com/gallery_2.2.4_released
Comment 1 Lubomir Kundrak 2008-01-18 17:17:43 UTC 
This was fixed in gallery2-2.2.4-1
Fedora 8: FEDORA-2007-4778
Fedora 7: FEDORA-2007-4777