MightyPork
/
airsonic-custom
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Jetty is only used by developers, and never in production

Browse Source 
So we're free to completely ignore CVE against it.
master
jvoisin 5 years ago
parent 2c3ba680d8
commit 58daacd9ab
1 changed files with 3 additions and 3 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 6
      airsonic-main/cve-suppressed.xml

6
airsonic-main/cve-suppressed.xml
Unescape View File

@ -49,9 +49,9 @@
<!-- Jetty is currently only used for developer experimentation --> <!-- Jetty is currently only used for developer experimentation -->
<suppress> <suppress>
<notes><![CDATA[file name: jetty-schemas-3.1.jar]]></notes> <notes>Jetty is currently only used for developer experimentations</notes>
<gav regex="true">^org\.eclipse\.jetty\.toolchain:jetty-schemas:.*$</gav> <gav regex="true">^org\.eclipse\.jetty:.*$</gav>
<cve>CVE-2017-9735</cve> <cpe>cpe:/a:org.eclipse.jetty:</cpe>
</suppress> </suppress>
<!-- No git functionality is used from the following dependencies --> <!-- No git functionality is used from the following dependencies -->

Write Preview
Loading…
Cancel
Save