[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-11477/7zip

Sat, 23 Nov 2024 00:03:06 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4aedd46b by Salvatore Bonaccorso at 2024-11-23T09:02:14+01:00
Update status for CVE-2024-11477/7zip

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -652,9 +652,9 @@ CVE-2024-10094 (Pega Platform versions 6.x to Infinity 
24.1.1 are affected by an
        NOT-FOR-US: Pega Platform
 CVE-2024-11477
        - 7zip 24.07+dfsg-1
-       - p7zip 16.02+transitional.1
+       [bookworm] - 7zip <not-affected> (Vulnerable code introduced in 24.01)
+       - p7zip <not-affected> (Vulnerable code not present)
        NOTE: https://www.zerodayinitiative.com/advisories/ZDI-24-1532/
-       NOTE: Since p7zip/16.02+transitional.1 src:p7zip is only a empty source 
package
        NOTE: depending on 7zip. Mark this version as fixed version.
 CVE-2024-11233
        - php8.2 <unfixed>



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4aedd46b4656ee20b5b1a46b1833b8e12d9f3237

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4aedd46b4656ee20b5b1a46b1833b8e12d9f3237
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to