diff options
| author | Oskar <oskar@mullvad.net> | 2024-10-18 14:52:10 +0200 |
|---|---|---|
| committer | Oskar <oskar@mullvad.net> | 2024-10-18 14:52:10 +0200 |
| commit | 6c5dbc9343a2c076b8aad278351156709fc75df6 (patch) | |
| tree | 7946fff6611986f5b12b62e15c5b147b07d811e9 | |
| parent | b12ebc1ad1e737a6ded78d3304c6238e196d7871 (diff) | |
| parent | 691fe5de04814ff673a5a247c1b08568aa001b64 (diff) | |
| download | mullvadvpn-6c5dbc9343a2c076b8aad278351156709fc75df6.tar.xz mullvadvpn-6c5dbc9343a2c076b8aad278351156709fc75df6.zip | |
Merge branch 'ignore-elliptic-vulnerability'
| -rw-r--r-- | gui/osv-scanner.toml | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/gui/osv-scanner.toml b/gui/osv-scanner.toml index d79251d9f5..3689a56c17 100644 --- a/gui/osv-scanner.toml +++ b/gui/osv-scanner.toml @@ -29,3 +29,9 @@ reason = "This is just a dev dependency, and we don't have untrusted input to mi id = "CVE-2024-21528" # GHSA-g974-hxvm-x689 ignoreUntil = 2025-01-17 reason = "There is no fix yet and we don't send untrusted input to the first argument of addTranslations" + +# elliptic: Valid ECDSA signatures erroneously rejected in Elliptic +[[IgnoredVulns]] +id = "CVE-2024-48948" # GHSA-fc9h-whq2-v747 +ignoreUntil = 2025-01-17 +reason = "We don't use the signing capabiliteis of browserify" |