[pulsar] 01/02: [owasp] add suppressions for Kotlin stdlib CVE-2022-24329 (#14629)

nicoloboschi Tue, 24 May 2022 01:12:50 -0700

This is an automated email from the ASF dual-hosted git repository.

nicoloboschi pushed a commit to branch branch-2.9
in repository https://gitbox.apache.org/repos/asf/pulsar.git


commit 55be557d7a65b88ad767e8be4a8e2dc89399e562
Author: Nicolò Boschi <boschi1...@gmail.com>
AuthorDate: Thu Mar 10 04:49:57 2022 +0100

    [owasp] add suppressions for Kotlin stdlib CVE-2022-24329 (#14629)
    
    (cherry picked from commit 4910519eb5c20249d982cab40813af3e870e4f90)
---
 src/owasp-dependency-check-suppressions.xml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/src/owasp-dependency-check-suppressions.xml 
b/src/owasp-dependency-check-suppressions.xml
index 838e142b65d..0f567bc37db 100644
--- a/src/owasp-dependency-check-suppressions.xml
+++ b/src/owasp-dependency-check-suppressions.xml
@@ -42,6 +42,14 @@
     <vulnerabilityName regex="true">.*</vulnerabilityName>
   </suppress>
 
+  <suppress>
+    <notes><![CDATA[
+file name: kotlin-stdlib-1.4.32.jar
+]]></notes>
+    <sha1>461367948840adbb0839c51d91ed74ef4a9ccb52</sha1>
+    <cve>CVE-2022-24329</cve>
+  </suppress>
+
   <!-- clickhouse: security scan matches client lib to the server CVEs -->
   <suppress>
     <notes><![CDATA[

[pulsar] 01/02: [owasp] add suppressions for Kotlin stdlib CVE-2022-24329 (#14629)

Reply via email to