Bugtraq:

"Cross-site scripting (XSS) vulnerability in search.php of Gallery 1.1 through 1.3.4 allows remote attackers to insert arbitrary web script via the searchstring parameter." update to gallery-1.3.4-p11. PR: 56313 Submitted by: Thomas Vogt <thomas.vogt@bsdunix.ch> Approved by: Jamie Hermans <jamie@hermans.ca>
svn path=/head/; revision=88396
2003-09-03 01:41:43 +00:00 · 2003-09-03 01:41:43 +00:00 · 1a55768b3c · 2021-03-31 03:12:20 +00:00
commit 1a55768b3c
parent b7573d38a6
6 changed files with 6 additions and 6 deletions
--- a/www/gallery/Makefile
+++ b/www/gallery/Makefile
@ -6,7 +6,7 @@
 #

 PORTNAME=	gallery
-PORTVERSION=	1.3.4
+PORTVERSION=	1.3.4-pl1
 CATEGORIES=	www
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE}
 MASTER_SITE_SUBDIR=	${PORTNAME}
--- a/www/gallery/distinfo
+++ b/www/gallery/distinfo
@ -1 +1 @@
-MD5 (gallery-1.3.4.tar.gz) = b74f829c07ed5fe08c5f81d090d7d7fb
+MD5 (gallery-1.3.4-pl1.tar.gz) = eed5daf008906ce63406a917af98bb28
--- a/www/gallery2/Makefile
+++ b/www/gallery2/Makefile
@ -6,7 +6,7 @@
 #

 PORTNAME=	gallery
-PORTVERSION=	1.3.4
+PORTVERSION=	1.3.4-pl1
 CATEGORIES=	www
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE}
 MASTER_SITE_SUBDIR=	${PORTNAME}
--- a/www/gallery2/distinfo
+++ b/www/gallery2/distinfo
@ -1 +1 @@
-MD5 (gallery-1.3.4.tar.gz) = b74f829c07ed5fe08c5f81d090d7d7fb
+MD5 (gallery-1.3.4-pl1.tar.gz) = eed5daf008906ce63406a917af98bb28
--- a/www/gallery3/Makefile
+++ b/www/gallery3/Makefile
@ -6,7 +6,7 @@
 #

 PORTNAME=	gallery
-PORTVERSION=	1.3.4
+PORTVERSION=	1.3.4-pl1
 CATEGORIES=	www
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE}
 MASTER_SITE_SUBDIR=	${PORTNAME}
--- a/www/gallery3/distinfo
+++ b/www/gallery3/distinfo
@ -1 +1 @@
-MD5 (gallery-1.3.4.tar.gz) = b74f829c07ed5fe08c5f81d090d7d7fb
+MD5 (gallery-1.3.4-pl1.tar.gz) = eed5daf008906ce63406a917af98bb28