You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@myfaces.apache.org by lo...@apache.org on 2022/05/31 10:47:38 UTC

[myfaces-build-tools] branch master updated: build: false positive - is fixed in 2.0.25

This is an automated email from the ASF dual-hosted git repository.

lofwyr pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/myfaces-build-tools.git


The following commit(s) were added to refs/heads/master by this push:
     new aee5659f build: false positive - is fixed in 2.0.25
     new 22068140 Merge remote-tracking branch 'origin/master'
aee5659f is described below

commit aee5659fd430323fae626313ce4cc21d8e784fa7
Author: Udo Schnurpfeil <ud...@irian.eu>
AuthorDate: Tue May 31 12:47:06 2022 +0200

    build: false positive - is fixed in 2.0.25
---
 .../tobago/dependency-check-suppression-for-tobago-4.x.xml          | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml b/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml
index 5cecbc7b..4ff0b8a6 100644
--- a/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml
+++ b/other/checkstyle-rules/src/main/resources/tobago/dependency-check-suppression-for-tobago-4.x.xml
@@ -47,4 +47,10 @@
     <gav regex="true">^org\.apache\.myfaces\.tobago:tobago-tool-test:.*$</gav>
     <cve>CVE-2007-1349</cve>
   </suppress>
+  <suppress>
+    <!-- the problem is fixed in 2.0.25 - https://issues.apache.org/jira/browse/MYFACES-4373 -->
+    <notes><![CDATA[ file name: myfaces-impl-2.0.25.jar ]]></notes>
+    <sha1>cef072c00fce9358be1fb26ded20ec5e38321316</sha1>
+    <vulnerabilityName>CVE-2021-26296</vulnerabilityName>
+  </suppress>
 </suppressions>