From a1fa4800021364c2cf1eed46bbaa607d99a4fcd3 Mon Sep 17 00:00:00 2001
From: Mahavir Jain <mahavir@espressif.com>
Date: Thu, 19 Dec 2024 08:59:25 +0530
Subject: [PATCH] fix(zlib): exclude CVE-2023-45853 from scan (fixed in 1.3.1)

---
 zlib/sbom_zlib.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/zlib/sbom_zlib.yml b/zlib/sbom_zlib.yml
index 59e19a1574..650cc421d1 100644
--- a/zlib/sbom_zlib.yml
+++ b/zlib/sbom_zlib.yml
@@ -5,3 +5,6 @@ supplier: 'Organization: zlib <http://www.zlib.net/>'
 description: A massively spiffy yet delicately unobtrusive compression library
 url: https://github.com/madler/zlib
 hash: 51b7f2abdade71cd9bb0e7a373ef2610ec6f9daf
+cve-exclude-list:
+  - cve: CVE-2023-45853
+    reason: Resolved in version 1.3.1