Trivy: add the latest detected issues to .trivyignore list

Signed-off-by: Gromadzki, Tomasz <[email protected]>
grom72 · Apr 25, 2024 · 50583b6 · 50583b6
1 parent ee3228b
commit 50583b6
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/ci/trivy/.trivyignore b/ci/trivy/.trivyignore
@@ -33,4 +33,12 @@ CVE-2024-25710
 #CVE-2024-26308,HIGH,5.5,"commons-compress: OutOfMemoryError unpacking broken Pack200 file","org.apache.commons:commons-compress","1.21","1.26.0",https://avd.aquasec.com/nvd/cve-2024-26308
 CVE-2024-26308
 #CVE-2024-24786,MEDIUM,,"golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON","google.golang.org/protobuf","1.30.0","1.33.0",https://avd.aquasec.com/nvd/cve-2024-24786
-CVE-2024-24786
+CVE-2024-24786
+#CVE-2023-45288,MEDIUM,,"golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS","golang.org/x/net","0.17.0","0.23.0",https://avd.aquasec.com/nvd/cve-2023-45288
+CVE-2023-45288
+#CVE-2023-52428,MEDIUM,,"Denial of Service in Connect2id Nimbus JOSE+JWT","com.nimbusds:nimbus-jose-jwt","9.8.1","9.37.2",https://avd.aquasec.com/nvd/cve-2023-52428
+CVE-2023-52428
+#CVE-2024-29131,MEDIUM,,"commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()","org.apache.commons:commons-configuration2","2.8.0","2.10.1",https://avd.aquasec.com/nvd/cve-2024-29131
+CVE-2024-29131
+#CVE-2024-29133,MEDIUM,,"commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree","org.apache.commons:commons-configuration2","2.8.0","2.10.1",https://avd.aquasec.com/nvd/cve-2024-29133
+CVE-2024-29133