mailing list archives
Re: CVE request: piwik before 1.6
From: "Steven M. Christey" <coley () rcf-smtp mitre org>
Date: Wed, 19 Oct 2011 12:58:11 -0400 (EDT)
On Wed, 19 Oct 2011, Hanno B?ck wrote:
Regarding CVEs, i suggest adding one for every name, e.g.
"Unknown security vulnerability in piwik before 1.6 discovered by
Alexandru Pitis" etc., until we know more about it.
This is consistent with current practice, where we assign separate CVEs
for issues found by different researchers. With the (limited) knowledge
that's available right now, all the vulns are the same type, i.e.,