MightyPork
/
airsonic-custom
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Exclude new spring 5.0.5 cve

Browse Source
master
Andrew DeMaria 6 years ago
parent 5dc96ba011
commit 54e1237320
No known key found for this signature in database
GPG Key ID: 0A3F5E91F8364EDF
1 changed files with 5 additions and 0 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 5
      airsonic-main/cve-suppressed.xml

5
airsonic-main/cve-suppressed.xml
Unescape View File

@ -163,4 +163,9 @@
<gav regex="true">.*slf4j.*</gav> <gav regex="true">.*slf4j.*</gav>
<cve>CVE-2018-8088</cve> <cve>CVE-2018-8088</cve>
</suppress> </suppress>
<suppress>
<notes><![CDATA[This only impacts spring 5.0.5 which we dont use]]></notes>
<gav regex="true">.*spring.*</gav>
<cve>CVE-2018-1258</cve>
</suppress>
</suppressions> </suppressions>

Write Preview
Loading…
Cancel
Save