Ignore GO-2025-4008

author: Markus Pettersson <markus.pettersson@mullvad.net> 2025-10-30 09:50:22 +0100
committer: Markus Pettersson <markus.pettersson@mullvad.net> 2025-10-30 15:07:28 +0100
commit: d97baf6d74b638fcb6546e70b344654e3cc306da (patch)
tree: ff55a840e26cf818c0dbf75640cca8596eb629c1
parent: 37a02c153976a476d0613341d7aa7e2427600433 (diff)
download: mullvadvpn-d97baf6d74b638fcb6546e70b344654e3cc306da.tar.xz
mullvadvpn-d97baf6d74b638fcb6546e70b344654e3cc306da.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/wireguard-go-rs/libwg/osv-scanner.toml b/wireguard-go-rs/libwg/osv-scanner.toml
index f39d2f3dc4..8461b9cf5e 100644
--- a/wireguard-go-rs/libwg/osv-scanner.toml
+++ b/wireguard-go-rs/libwg/osv-scanner.toml
@@ -113,3 +113,9 @@ reason = "wireguard-go does not use net/mail"
 id = "CVE-2025-58187" # GO-2025-4007
 ignoreUntil = 2026-10-30
 reason = "'This affects programs which validate arbitrary certificate chains.' wireguard-go does not do that"
+
+# ALPN negotiation errors can contain arbitrary text
+[[IgnoredVulns]]
+id = "CVE-2025-58189" # GO-2025-4008
+ignoreUntil = 2026-10-30
+reason = "wireguard-go does not use crypto/tls"
author	Markus Pettersson <markus.pettersson@mullvad.net>	2025-10-30 09:50:22 +0100
committer	Markus Pettersson <markus.pettersson@mullvad.net>	2025-10-30 15:07:28 +0100
commit	d97baf6d74b638fcb6546e70b344654e3cc306da (patch)
tree	ff55a840e26cf818c0dbf75640cca8596eb629c1
parent	37a02c153976a476d0613341d7aa7e2427600433 (diff)
download	mullvadvpn-d97baf6d74b638fcb6546e70b344654e3cc306da.tar.xz mullvadvpn-d97baf6d74b638fcb6546e70b344654e3cc306da.zip