====================================================================

                             CERT-Renater

                  Note d'Information No. 2012/VULN259
____________________________________________________________________

DATE                :  15/06/2012

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Gallery versions prior to 3.0.4.

======================================================================
http://gallery.menalto.com/gallery_3_0_4
______________________________________________________________________

 Gallery 3.0.4 Security Release Available!
Submitted by ckdake on Tue, 2012-06-12 18:11


After several extensive internal and external security audits which
discovered 22 distinct vulnerabilities, we are releasing Gallery 3.0.4
as a security release. All of the issues require that someone with
malicious intent either have an account with edit permissions, or trick
a user with edit permissions into clicking on a malicious link. In most
cases, this can only lead to a possible XSS vulnerability, but in
several instances it allows arbitrary PHP code execution.

We thank the following individuals for reporting these issues: Chalk,
Mateusz Goik, James 'albino' Kettle, Emanuel Bronshtein, and Sergey
Markov. Due to their efforts, they will each be receiving bounties of
$1000 for their help in making Gallery more secure. Read our Bounties
page for details and how to submit any security issues you find.

We strongly recommend that all users of Gallery 3 upgrade as soon as
possible.


Upgrading Gallery 3

Upgrading is really easy! Unpack the new version, move the var/
directory of the old version to the new version's folder and then
either browse to: http://your-site.com/gallery3/index.php/upgrader or
at a shell prompt: php index.php upgrade For more detailed upgrade
instructions, please refer to the Gallery 3 User Guide


Got feedback?

If you have any overall feedback, please visit the Gallery 3.0.4
Feedback forum topic and let us know! If you have questions, please
visit the Gallery 3 Wiki, the home for Gallery 3 documentation.



======================================================================

=========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
=========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44          +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41          +
+ 75013 Paris           | email: certsvp@renater.fr     +
=========================================================