Gallery 1.4.4-pl6 Security Release

The recent release of 1.4.4-pl5 was meant to resolve some security problems, however after another analysis of the code the fix did not actually fix what it was intended to. 1.4.4-pl6 is now available and should properly fix the security problems. Please see the 1.4.4-pl5 announcement for more information about the security problems.

All Gallery users are strongly urged to upgrade to 1.4.4-pl6 immediately, which fixes this problem and will secure your system.

Gallery 1.4.4-pl6 can be downloaded from the Gallery Download Page.
Submitted by milfodd on Tue, 2005-02-08 01:54.

How about a download to go with the announcement?

ckdake's picture
Submitted by ckdake on Tue, 2005-02-08 01:57.

The download is available from http://sourceforge.net/project/showfiles.php?group_id=7130

dmd's picture
Submitted by dmd on Tue, 2005-02-08 04:28.

Can somebody post a patch please?

Submitted by raceme on Tue, 2005-02-08 09:55.

For Gallery security fix patches go to:

<a href="http://www.raceme.org/bazar/gallery/">http://www.raceme.org/bazar/gallery/</a>

schultmc's picture
Submitted by schultmc on Tue, 2005-02-08 12:27.

Version 1.4.4-pl6-1 of the Debian gallery package was uploaded on Monday, February 7, 2005 and should be available in Debian unstable after the archive run completes in the afternoon (EST) of Tuesday, February 8, 2005

Submitted by neptho on Thu, 2005-02-10 07:12.

Here's a unified diff. Why this deserved a 'release' rather than a diff, or simple editing information confuses me:<br />
<br />
<pre>--- gallery-stock/Version.php Wed Feb 9 22:56:53 2005<br />
+++ gallery/Version.php Mon Feb 7 17:28:08 2005<br />
@@ -17,7 +17,7 @@<br />
* along with this program; if not, write to the Free Software<br />
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.<br />
*<br />
- * $Id: Version.php,v 1.972.2.79 2005/01/25 23:03:54 ckdake Exp $<br />
+ * $Id: Version.php,v 1.972.2.81 2005/02/08 01:28:08 ckdake Exp $<br />
*/<br />
?><br />
<?php<br />
@@ -31,14 +31,14 @@<br />
$gallery = new stdClass();<br />
}<br />
<br />
-$gallery->version = '1.4.4-pl5';<br />
+$gallery->version = '1.4.4-pl6';<br />
$gallery->config_version = 82;<br />
$gallery->album_version = 31;<br />
$gallery->user_version = 5;<br />
$gallery->url = "http://gallery.sourceforge.net";<br />
<br />
/* do not edit the date!! modified by CVS */<br />
-$gallery->last_change=strtotime(substr('$Date: 2005/01/25 23:03:54 $', 7, -1));<br />
+$gallery->last_change=strtotime(substr('$Date: 2005/02/08 01:28:08 $', 7, -1));<br />
/*<br />
* PostNuke version info<br />
*/<br />
diff -ur gallery-stock/do_command.php gallery/do_command.php<br />
--- gallery-stock/do_command.php Wed Feb 9 22:56:53 2005<br />
+++ gallery/do_command.php Wed Feb 2 15:46:38 2005<br />
@@ -17,7 +17,7 @@<br />
* along with this program; if not, write to the Free Software<br />
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.<br />
*<br />
- * $Id: do_command.php,v 1.63.2.4 2005/01/25 06:07:15 cryptographite Exp $<br />
+ * $Id: do_command.php,v 1.63.2.5 2005/02/02 23:46:38 cryptographite Exp $<br />
*/<br />
?><br />
<?php<br />
@@ -31,8 +31,8 @@<br />
* for all we know, someone put their album URL on a gopher server...<br />
*/<br />
if (isset($return) && $return[0] != '/' && strstr($return, '://') !== false) {<br />
- if (strncmp($return, $gallery->app->photoAlbumURL, strlen($gallery->app->photoAlbumURL) != 0) &&<br />
- strncmp($return, $gallery->app->albumDirURL, strlen($gallery->app->albumDirURL) != 0)) {<br />
+ if (strncmp($return, $gallery->app->photoAlbumURL, strlen($gallery->app->photoAlbumURL)) != 0 &&<br />
+ strncmp($return, $gallery->app->albumDirURL, strlen($gallery->app->albumDirURL)) != 0) {<br />
die(_('Attempted security breach.'));<br />
}<br />
}</pre>

adventure's picture
Submitted by adventure on Thu, 2005-02-10 22:34.

You can download temporaly the patch at: <a href="http://oversight.pottum.nl/gallery-1.4.4-pl5-1.4.4-pl6.patch">http://oversight.pottum.nl/gallery-1.4.4-pl5-1.4.4-pl6.patch</A>

Cheers,
Harry

Submitted by prfxnst on Fri, 2005-02-25 13:37.

That patch threw errors for me, Harry. This worked...<br />
<br />
tar xvf gallery-1.4.4-pl6.tar \<br />
gallery/ChangeLog \<br />
gallery/Version.php \<br />
gallery/do_command.php \<br />
gallery/docs/g1package/gallery1-install.faq.a.html \<br />
gallery/docs/g1package/gallery1-install.faq.b.html \<br />
gallery/docs/g1package/gallery1-install.faq.c.html \<br />
gallery/docs/g1package/index.html<br />
<br />
Sandy

Submitted by duvide on Sat, 2005-03-05 14:32.

can you tell me where to exactly apply the patch?<br />
<br />
Thank you