"-Synchronized-Data."

2023/32xxx/CVE-2023-32001.json

@@ -5,83 +5,13 @@
     "CVE_data_meta": {
         "ID": "CVE-2023-32001",
         "ASSIGNER": "support@hackerone.com",
-        "STATE": "PUBLIC"
+        "STATE": "REJECT"
     },
     "description": {
         "description_data": [
             {
                 "lang": "eng",
-                "value": "libcurl can be told to save cookie, HSTS and/or alt-svc data to files. When\ndoing this, it called `stat()` followed by `fopen()` in a way that made it\nvulnerable to a TOCTOU race condition problem.\n\nBy exploiting this flaw, an attacker could trick the victim to create or\noverwrite protected files holding this data in ways it was not intended to.\n"
-            }
-        ]
-    },
-    "problemtype": {
-        "problemtype_data": [
-            {
-                "description": [
-                    {
-                        "lang": "eng",
-                        "value": "n/a"
-                    }
-                ]
-            }
-        ]
-    },
-    "affects": {
-        "vendor": {
-            "vendor_data": [
-                {
-                    "vendor_name": "curl",
-                    "product": {
-                        "product_data": [
-                            {
-                                "product_name": "curl",
-                                "version": {
-                                    "version_data": [
-                                        {
-                                            "version_value": "not down converted",
-                                            "x_cve_json_5_version_data": {
-                                                "versions": [
-                                                    {
-                                                        "version": "8.2.0",
-                                                        "status": "affected",
-                                                        "lessThan": "8.2.0",
-                                                        "versionType": "semver"
-                                                    },
-                                                    {
-                                                        "version": "7.84.0",
-                                                        "status": "unaffected",
-                                                        "lessThan": "7.84.0",
-                                                        "versionType": "semver"
-                                                    }
-                                                ]
-                                            }
-                                        }
-                                    ]
-                                }
-                            }
-                        ]
-                    }
-                }
-            ]
-        }
-    },
-    "references": {
-        "reference_data": [
-            {
-                "url": "https://hackerone.com/reports/2039870",
-                "refsource": "MISC",
-                "name": "https://hackerone.com/reports/2039870"
-            },
-            {
-                "url": "https://www.debian.org/security/2023/dsa-5460",
-                "refsource": "MISC",
-                "name": "https://www.debian.org/security/2023/dsa-5460"
-            },
-            {
-                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BGJ7POX4ATGERTSBFJPW2EQH4Z65PSZJ/",
-                "refsource": "MISC",
-                "name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BGJ7POX4ATGERTSBFJPW2EQH4Z65PSZJ/"
+                "value": "** REJECT ** We issued this CVE pre-maturely, as we have subsequently realized that this issue points out a problem that there really is no safe measures around or protections for."
             }
         ]
     }