A vulnerability was discovered in gallery, a web-based photo album written in php, whereby a remote attacker could gain access to the gallery "admin" user without proper authentication. No CVE candidate was available for this vulnerability at the time of release. For the current stable distribution (woody), these problems have been fixed in version 1.2.5-8woody2. For the unstable distribution (sid), these problems have been fixed in version 1.4.3-pl2-1. We recommend that you update your gallery package.
A vulnerability was discovered in gallery, a web-based photo album written in php, whereby a remote attacker could gain access to the gallery "admin" user without proper authentication. No CVE candidate was available for this vulnerability at the time of release.
For the current stable distribution (woody), these problems have been fixed in version 1.2.5-8woody2.
For the unstable distribution (sid), these problems have been fixed in version 1.4.3-pl2-1.
We recommend that you update your gallery package.
MD5 checksums of the listed files are available in the original advisory.