You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@myfaces.apache.org by lo...@apache.org on 2022/05/31 10:47:38 UTC
[myfaces-build-tools] branch master updated: build: false positive - is fixed in 2.0.25
This is an automated email from the ASF dual-hosted git repository.
lofwyr pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/myfaces-build-tools.git
The following commit(s) were added to refs/heads/master by this push:
new aee5659f build: false positive - is fixed in 2.0.25
new 22068140 Merge remote-tracking branch 'origin/master'
aee5659f is described below
commit aee5659fd430323fae626313ce4cc21d8e784fa7
Author: Udo Schnurpfeil <ud...@irian.eu>
AuthorDate: Tue May 31 12:47:06 2022 +0200
build: false positive - is fixed in 2.0.25
---
.../tobago/dependency-check-suppression-for-tobago-4.x.xml | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml b/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml
index 5cecbc7b..4ff0b8a6 100644
--- a/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml
+++ b/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml
@@ -47,4 +47,10 @@
<gav regex="true">^org\.apache\.myfaces\.tobago:tobago-tool-test:.*$</gav>
<cve>CVE-2007-1349</cve>
</suppress>
+ <suppress>
+ <!-- the problem is fixed in 2.0.25 - https://issues.apache.org/jira/browse/MYFACES-4373 -->
+ <notes><![CDATA[ file name: myfaces-impl-2.0.25.jar ]]></notes>
+ <sha1>cef072c00fce9358be1fb26ded20ec5e38321316</sha1>
+ <vulnerabilityName>CVE-2021-26296</vulnerabilityName>
+ </suppress>
</suppressions>