Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Suppress CVE that does not affect us #479

Merged
merged 1 commit into from
Mar 20, 2024
Merged

Suppress CVE that does not affect us #479

merged 1 commit into from
Mar 20, 2024

Conversation

tdrwenski
Copy link
Contributor

Suppress CVE that only applies when AuthenicatedVoter is used directly: https://spring.io/security/cve-2024-22257

@tdrwenski tdrwenski force-pushed the suppress-cve branch 2 times, most recently from 180617b to 2b8139f Compare March 20, 2024 15:09
@tdrwenski tdrwenski marked this pull request as ready for review March 20, 2024 15:50
@haileyajohnson haileyajohnson merged commit 1f78cd3 into Unidata:main Mar 20, 2024
9 checks passed
@tdrwenski tdrwenski deleted the suppress-cve branch March 20, 2024 15:58
tdrwenski pushed a commit to tdrwenski/tds that referenced this pull request Mar 20, 2024
Revert "Suppress CVE that does not affect us (Unidata#479)"
3b25ec5 
This reverts commit 1f78cd3.
@tdrwenski tdrwenski mentioned this pull request Mar 20, 2024
Merged
haileyajohnson pushed a commit that referenced this pull request Mar 20, 2024
@tdrwenski
Update spring security (#480)
4f45a07 
* Revert "Suppress CVE that does not affect us (#479)"

This reverts commit 1f78cd3.

* Bump spring security version
WeatherGod pushed a commit to WeatherGod/tds that referenced this pull request Apr 18, 2024
@tdrwenski @WeatherGod
Suppress CVE that does not affect us (Unidata#479)
cf0297a
WeatherGod pushed a commit to WeatherGod/tds that referenced this pull request Apr 18, 2024
@tdrwenski @WeatherGod
Update spring security (Unidata#480)
2befa74 
* Revert "Suppress CVE that does not affect us (Unidata#479)"

This reverts commit 1f78cd3.

* Bump spring security version
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@haileyajohnson haileyajohnson haileyajohnson approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@tdrwenski @haileyajohnson