Gallery before 1.5.9, and 2.x before 2.2.6, does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie. Reference: URL:http://seclists.org/fulldisclosure/2008/Sep/0379.html Reference: MISC:http://int21.de/cve/CVE-2008-3662-gallery.html Reference: CONFIRM:http://gallery.menalto.com/gallery_1.5.9_released Reference: CONFIRM:http://gallery.menalto.com/gallery_2.2.6_released Reference: URL:http://www.securityfocus.com/bid/31231
Created gallery2 tracking bugs for this issue CVE-2008-3662 Affects: F8 [bug #462871] CVE-2008-3662 Affects: F9 [bug #462872] CVE-2008-3662 Affects: Fdevel [bug #462873]
gallery2-2.3-1.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.
gallery2-2.3-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
gallery2-2.3-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
Closing, fixed.