Package: gallery
Severity: important
Gallery is a slick Web-based photo album written using PHP. It is easy
to install, includes a config wizard, and provides users with the
ability to create and maintain their own albums in the album collection
via an intuitive Web interface. Photo management includes automatic
thumbnail creation, image resizing, rotation, ordering, captioning and
more. Albums can have read, write, and caption permissions per
individual authenticated user for an additional level of privacy.
Gallery 1.5.3 is now available for download. This release is primarily a
bug fix release, but it also includes an important security fix. The
fixes:
* Security: Not all user input was correctly sanitized for
JavaScript injection. (Thanks to Aditya Mooley at
[EMAIL PROTECTED] for reporting this and giving us
plenty of time to fix it!)
* HTML is allowed again in various places. (title, caption,
comments)
* Weird space around images inside the border that appeared in
1.5.2 is gone.
* Proper order of items when uploaded in IE and Opera.
* Language Mode 2 works again.
* Several other minor things.
We recommend all Gallery 1 users upgrade to 1.5.3 to keep their Gallery
as secure as possible. Download Gallery 1.5.3 from
http://sf.net/project/showfiles.php?group_id=7130&package_id=7239
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
