[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-12215/matomo

Mon May 20 21:17:19 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0918b884 by Salvatore Bonaccorso at 2019-05-20T20:15:01Z
Add CVE-2019-12215/matomo

- - - - -
83f7157e by Salvatore Bonaccorso at 2019-05-20T20:16:20Z
Update two references for piwik to matomo

Apparently the upstream project was renamed (again) as Matomo. Make all
ITP bug references to #448532 conform to one planned source package
name.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -45,7 +45,7 @@ CVE-2019-12217 (An issue was discovered in libSDL2.a in Simple DirectMedia Layer
 CVE-2019-12216 (An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) ...)
 	TODO: check
 CVE-2019-12215 (** DISPUTED ** A full path disclosure vulnerability was discovered in  ...)
-	TODO: check
+	- matomo <itp> (bug #448532)
 CVE-2019-12214 (In FreeImage 3.18.0, an out-of-bounds access occurs because of mishand ...)
 	TODO: check
 CVE-2019-12213 (When FreeImage 3.18.0 reads a special TIFF file, the TIFFReadDirectory ...)
@@ -170715,9 +170715,9 @@ CVE-2015-7818 (The administration-panel web service in IBM System Networking Swi
 CVE-2015-7817 (Race condition in the administration-panel web service in IBM System N ...)
 	NOT-FOR-US: IBM
 CVE-2015-7816 (The DisplayTopKeywords function in plugins/Referrers/Controller.php in ...)
-	- piwik <itp> (bug #448532)
+	- matomo <itp> (bug #448532)
 CVE-2015-7815 (Directory traversal vulnerability in core/ViewDataTable/Factory.php in ...)
-	- piwik <itp> (bug #448532)
+	- matomo <itp> (bug #448532)
 CVE-2015-7814 (Race condition in the relinquish_memory function in arch/arm/domain.c  ...)
 	{DSA-3414-1}
 	- xen 4.6.0-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/15899e23aaaf65c551947dab1dffa1fd6ab1d8df...83f7157e5c34cdd63683854c0792cc716d5dd2e6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/15899e23aaaf65c551947dab1dffa1fd6ab1d8df...83f7157e5c34cdd63683854c0792cc716d5dd2e6
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190520/43947fb9/attachment-0001.html>
