[Git][security-tracker-team/security-tracker][master] mark CVE-2024-0217 as non-issue

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ba476ec2 by Moritz Muehlenhoff at 2024-10-30T17:27:30+01:00
mark CVE-2024-0217 as non-issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -81703,12 +81703,8 @@ CVE-2024-21631 (Vapor is an HTTP web framework for Swift. Prior to version 4.90.
 CVE-2024-21622 (Craft is a content management system. This is a potential moderate imp ...)
 	NOT-FOR-US: Craft CMS
 CVE-2024-0217 (A use-after-free flaw was found in PackageKitd. In some conditions, th ...)
-	- packagekit <unfixed> (bug #1060016)
-	[bookworm] - packagekit <no-dsa> (Minor issue)
-	[bullseye] - packagekit <ignored> (Minor issue)
-	[buster] - packagekit <no-dsa> (Minor issue)
+	NOTE: Unclear CVE assignment for packagekit, it was never clarified what is was about (see also #1060016)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2256624
-	NOTE: Reducing impact via: https://github.com/PackageKit/PackageKit/commit/64278c9127e3333342b56ead99556161f7e86f79 (v1.2.7)
 CVE-2024-0201 (The Product Expiry for WooCommerce plugin for WordPress is vulnerable  ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2023-7068 (The WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shippi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ba476ec2afc0d9c9bd3720e5edce8a64a0af3283

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ba476ec2afc0d9c9bd3720e5edce8a64a0af3283
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241030/8994afeb/attachment-0001.htm>