CVE-2019-9619 got REJECTED (will be updated shortly on MITRE list)

The CVE was originally assigned because pam_systemd is not enabled for
non-interactive sessions, in Debian and Ubuntu and this leveraged the
issue to be exploitable. The change itself thouch can more be considered
as furhter hardening but missing/not-enabled pam_systemd for
non-interactive sessions itself can hardly be seen as vulnerability
itself.

This view was agreed on and proceeded to properly REJECT the CVE to not
cause confusion.