Skip to content

Commit

Permalink
fix: #4321 Suppress redis server CVEs for client libraries (#4321) (#…
Browse files Browse the repository at this point in the history 
…6489)
  • Loading branch information
@jsch-adt
jsch-adt authored Mar 12, 2024
1 parent 04aff68 commit e57ec63
Showing 1 changed file with 22 additions and 1 deletion.
23 changes: 22 additions & 1 deletion core/src/main/resources/dependencycheck-base-suppression.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6870,6 +6870,27 @@
<packageUrl regex="true">^pkg:maven/software\.amazon\.awssdk\.crt/aws-crt@.*$</packageUrl>
<cpe>cpe:/a:amazon:aws-sdk-java</cpe>
</suppress>
<!-- end generated suppressions added to main in 8.4.0 -->
<!-- end generated suppressions added to main in 8.4.0 -->
<suppress base="true">
<notes><![CDATA[
FP per #4321
]]></notes>
<packageUrl regex="true">^pkg:(pypi/redis|generic/Microsoft\.Extensions\.Caching\.StackExchangeRedis|generic/HealthChecks\.Redis)@.*$</packageUrl>
<cve>CVE-2021-32626</cve>
<cve>CVE-2021-32627</cve>
<cve>CVE-2021-32628</cve>
<cve>CVE-2021-32675</cve>
<cve>CVE-2021-32687</cve>
<cve>CVE-2021-32762</cve>
<cve>CVE-2021-41099</cve>
<cve>CVE-2022-24735</cve>
<cve>CVE-2022-24834</cve>
<cve>CVE-2021-31294</cve>
<cve>CVE-2021-32672</cve>
<cve>CVE-2022-24736</cve>
<cve>CVE-2022-36021</cve>
<cve>CVE-2023-25155</cve>
<cve>CVE-2023-28856</cve>
</suppress>

</suppressions>

0 comments on commit e57ec63

Please sign in to comment.