Skip to content

Commit 62c7a59

Browse files
smiklosovicsmiklosovic
committed
1 parent 816524a commit 62c7a59

2 files changed

Lines changed: 5 additions & 30 deletions

File tree

.build/owasp/dependency-check-suppressions.xml

Lines changed: 3 additions & 20 deletions
Original file line numberDiff line numberDiff line change
@@ -43,26 +43,9 @@
4343
<cve>CVE-2025-58057</cve>
4444
</suppress>
4545

46-
<!-- https://issues.apache.org/jira/browse/CASSANDRA-19142 -->
47-
<!-- https://issues.apache.org/jira/browse/CASSANDRA-20412 -->
46+
<!-- https://issues.apache.org/jira/browse/CASSANDRA-21159 -->
4847
<suppress>
49-
<packageUrl regex="true">^pkg:maven/ch\.qos\.logback/logback\-core@.*$</packageUrl>
50-
<cve>CVE-2023-6378</cve>
51-
<cve>CVE-2023-6481</cve>
52-
<cve>CVE-2024-12798</cve>
53-
<cve>CVE-2024-12801</cve>
54-
</suppress>
55-
<suppress>
56-
<packageUrl regex="true">^pkg:maven/ch\.qos\.logback/logback\-classic@.*$</packageUrl>
57-
<cve>CVE-2023-6378</cve>
58-
<cve>CVE-2023-6481</cve>
59-
<cve>CVE-2024-12798</cve>
60-
<cve>CVE-2024-12801</cve>
61-
</suppress>
62-
63-
<!-- https://issues.apache.org/jira/browse/CASSANDRA-20024 -->
64-
<suppress>
65-
<packageUrl regex="true">^pkg:maven/org\.apache\.lucene/lucene\-.*@9.7.0$</packageUrl>
66-
<cve>CVE-2024-45772</cve>
48+
<packageUrl regex="true">^pkg:maven/io\.netty/netty\-.*@.*$</packageUrl>
49+
<cve>CVE-2025-67735</cve>
6750
</suppress>
6851
</suppressions>

.snyk

Lines changed: 2 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -4,18 +4,8 @@ version: v1.25.0
44
ignore:
55
CVE-2023-44487:
66
- reason: https://issues.apache.org/jira/browse/CASSANDRA-18943 -- ^pkg:maven/io\.netty/netty\-.*@.*$
7-
CVE-2023-6378:
8-
- reason: Suppressed due to internal review, see project's .build/dependency-check-suppressions.xml
9-
CVE-2023-6481:
10-
- reason: Suppressed due to internal review, see project's .build/dependency-check-suppressions.xml
11-
CVE-2024-12798:
12-
- reason: Suppressed due to internal review, see project's .build/dependency-check-suppressions.xml
13-
CVE-2024-12801:
14-
- reason: Suppressed due to internal review, see project's .build/dependency-check-suppressions.xml
157
CVE-2024-29025:
168
- reason: https://issues.apache.org/jira/browse/CASSANDRA-20924 -- ^pkg:maven/io\.netty/netty\-.*@.*$
17-
CVE-2024-45772:
18-
- reason: https://issues.apache.org/jira/browse/CASSANDRA-20024 -- ^pkg:maven/org\.apache\.lucene/lucene\-.*@9.7.0$
199
CVE-2024-47535:
2010
- reason: https://issues.apache.org/jira/browse/CASSANDRA-20924 -- ^pkg:maven/io\.netty/netty\-.*@.*$
2111
CVE-2025-24970:
@@ -28,3 +18,5 @@ ignore:
2818
- reason: https://issues.apache.org/jira/browse/CASSANDRA-20924 -- ^pkg:maven/io\.netty/netty\-.*@.*$
2919
CVE-2025-58057:
3020
- reason: https://issues.apache.org/jira/browse/CASSANDRA-20924 -- ^pkg:maven/io\.netty/netty\-.*@.*$
21+
CVE-2025-67735:
22+
- reason: https://issues.apache.org/jira/browse/CASSANDRA-21159 -- ^pkg:maven/io\.netty/netty\-.*@.*$

0 commit comments

Comments
 (0)