[FP]: sketch for CVE-2021-40531 #6901
Comments
|
Maven Coordinates <dependency>
<groupId>com.yahoo.datasketches</groupId>
<artifactId>sketches-core</artifactId>
<version>0.13.4</version>
</dependency>Suppression rule: <suppress base="true">
<notes><![CDATA[
FP per issue #6901
]]></notes>
<packageUrl regex="true">^pkg:maven/com\.yahoo\.datasketches/sketches-core@.*$</packageUrl>
<cpe>cpe:/a:sketch:sketch</cpe>
</suppress>Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/10416592806 |
|
approved |
|
Suppress rule has been added to the |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Package URl
pkg:maven/com.yahoo.datasketches/[email protected]
CPE
cpe:2.3:a:sketch:sketch:0.13.4:::::::*
CVE
CVE-2021-40531
ODC Integration
None
ODC Version
10.0.3
Description
Actual vulnerable is reported on Sketch before 75,however OWASP has reported CVE from sketches-core v0.13.4
The text was updated successfully, but these errors were encountered: