{"id":"CVE-2024-22034","details":"Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl). This allows the attacker to change the configuration of osc for the victim","modified":"2026-01-27T04:20:09.219388Z","published":"2024-10-16T14:15:05Z","withdrawn":"2026-01-27T04:20:09.219388Z","related":["SUSE-SU-2024:2961-1","SUSE-SU-2024:2963-1","openSUSE-SU-2024:14277-1"],"references":[{"type":"REPORT","url":"https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22034"}],"schema_version":"1.7.3"}