This is an automated email from the ASF dual-hosted git repository.
brandonwilliams pushed a commit to branch cassandra-3.0
in repository https://gitbox.apache.org/repos/asf/cassandra.git
The following commit(s) were added to refs/heads/cassandra-3.0 by this push:
new fa18ea1852 Suppress CVE-2022-41915
fa18ea1852 is described below
commit fa18ea185233d97b9f2771b1a3a88f46dc1610d4
Author: Brandon Williams <[email protected]>
AuthorDate: Mon Jan 23 07:07:14 2023 -0600
Suppress CVE-2022-41915
Patch by brandonwilliams; reviewed by bereng for CASSANDRA-18147
---
.build/dependency-check-suppressions.xml | 1 +
CHANGES.txt | 1 +
2 files changed, 2 insertions(+)
diff --git a/.build/dependency-check-suppressions.xml
b/.build/dependency-check-suppressions.xml
index cfe34b74e5..6c14888564 100644
--- a/.build/dependency-check-suppressions.xml
+++ b/.build/dependency-check-suppressions.xml
@@ -50,6 +50,7 @@
<cve>CVE-2021-43797</cve>
<cve>CVE-2022-24823</cve>
<cve>CVE-2022-41881</cve>
+ <cve>CVE-2022-41915</cve>
</suppress>
<!-- https://issues.apache.org/jira/browse/CASSANDRA-14183 -->
diff --git a/CHANGES.txt b/CHANGES.txt
index aceaa87b59..7994824ad3 100644
--- a/CHANGES.txt
+++ b/CHANGES.txt
@@ -1,5 +1,6 @@
3.0.29
* Introduce check for names of test classes (CASSANDRA-17964)
+ * Suppress CVE-2022-41915 (CASSANDRA-18147)
* Suppress CVE-2021-1471, CVE-2021-3064, CVE-2021-4235 (CASSANDRA-18149)
* Switch to snakeyaml's SafeConstructor (CASSANDRA-18150)
* Expand build.dir property in rat targets (CASSANDRA-18183)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
