You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@zookeeper.apache.org by sy...@apache.org on 2022/05/19 05:54:06 UTC

[zookeeper] branch branch-3.5.10 updated: supress false positive CVE-2021-21409

This is an automated email from the ASF dual-hosted git repository.

symat pushed a commit to branch branch-3.5.10
in repository https://gitbox.apache.org/repos/asf/zookeeper.git


The following commit(s) were added to refs/heads/branch-3.5.10 by this push:
     new 61f1b4682 supress false positive CVE-2021-21409
61f1b4682 is described below

commit 61f1b468218261d57e4e2a997c4720c0003feef0
Author: Mate Szalay-Beko <sy...@apache.com>
AuthorDate: Thu May 19 07:51:10 2022 +0200

    supress false positive CVE-2021-21409
---
 owaspSuppressions.xml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/owaspSuppressions.xml b/owaspSuppressions.xml
index 5c4bc33bc..f9d446574 100644
--- a/owaspSuppressions.xml
+++ b/owaspSuppressions.xml
@@ -41,4 +41,8 @@
            this writing  -->
       <cve>CVE-2019-3826</cve>
    </suppress>
+   <suppress>
+      <!-- false positive - fixed in netty 4.1.61 and we use 4.1.77  -->
+      <cve>CVE-2021-21409</cve>
+   </suppress>
 </suppressions>