Skip to content

Commit

Permalink
cleanup cve suppression list
Browse files Browse the repository at this point in the history
  • Loading branch information
@infeo
infeo committed Apr 15, 2024
1 parent b699246 commit 9b5188e
Showing 1 changed file with 6 additions and 36 deletions.
42 changes: 6 additions & 36 deletions suppression.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,51 +3,21 @@
<suppressions xmlns="https://jeremylong.github.io/DependencyCheck/dependency-suppression.1.3.xsd">
<suppress>
<notes><![CDATA[
Incorrectly matched CPE
]]></notes>
Incorrectly matched CPE
]]>
</notes>
<gav regex="true">org\.cryptomator:.*</gav>
<cpe>cpe:/a:cryptomator:cryptomator</cpe>
<cve>CVE-2022-25366</cve>
</suppress>

<suppress>
<notes><![CDATA[
Suppress false positive, because com.google.common.io.Files.getTempDir() is not used
]]></notes>
Suppress false positive, because com.google.common.io.Files.getTempDir() is not used
]]>
</notes>
<packageUrl regex="true">^pkg:maven/com\.google\.guava/guava@.*$</packageUrl>
<vulnerabilityName>CVE-2020-8908</vulnerabilityName>
<cve>CVE-2020-8908</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: bcutil-jdk15on-1.70.jar
reason: vulnerable PEMParser not used.
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.bouncycastle/bcutil\-jdk15on@.*$</packageUrl>
<cve>CVE-2023-33202</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: bcpkix-jdk15on-1.70.jar
reason: vulnerable PEMParser not used.
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.bouncycastle/bcpkix\-jdk15on@.*$</packageUrl>
<cve>CVE-2023-33202</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: bcprov-jdk15on-1.70.jar
reason: vulnerable PEMParser not used.
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.bouncycastle/bcprov\-jdk15on@.*$</packageUrl>
<cve>CVE-2023-33202</cve>
</suppress>
<suppress>
<notes><![CDATA[
file name: bcprov-jdk15on-1.70.jar
reason: Library does not use LDAP CertStore from Bouncy Castle to validate X.509 certificates
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.bouncycastle/bcprov\-jdk15on@.*$</packageUrl>
<vulnerabilityName>CVE-2023-33201</vulnerabilityName>
</suppress>
</suppressions>

0 comments on commit 9b5188e

Please sign in to comment.