[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-11477/7zip

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4aedd46b by Salvatore Bonaccorso at 2024-11-23T09:02:14+01:00
Update status for CVE-2024-11477/7zip

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -652,9 +652,9 @@ CVE-2024-10094 (Pega Platform versions 6.x to Infinity 24.1.1 are affected by an
 	NOT-FOR-US: Pega Platform
 CVE-2024-11477
 	- 7zip 24.07+dfsg-1
-	- p7zip 16.02+transitional.1
+	[bookworm] - 7zip <not-affected> (Vulnerable code introduced in 24.01)
+	- p7zip <not-affected> (Vulnerable code not present)
 	NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1532/
-	NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source package
 	NOTE: depending on 7zip. Mark this version as fixed version.
 CVE-2024-11233
 	- php8.2 <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4aedd46b4656ee20b5b1a46b1833b8e12d9f3237

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4aedd46b4656ee20b5b1a46b1833b8e12d9f3237
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241123/0883cfa2/attachment.htm>