Ignore vuln GO-2025-3849 affecting database/sql

author: David Lönnhager <david.l@mullvad.net> 2025-08-08 10:18:15 +0200
committer: David Lönnhager <david.l@mullvad.net> 2025-08-08 10:18:29 +0200
commit: dcace5318b9d4cd84e48802e9c8a4cfd783fc882 (patch)
tree: d287b1fe30a657474bc28c7b23128e993d7d1e88
parent: 71f5091332c37532a204ad609b9d727ef16500a7 (diff)
download: mullvadvpn-dcace5318b9d4cd84e48802e9c8a4cfd783fc882.tar.xz
mullvadvpn-dcace5318b9d4cd84e48802e9c8a4cfd783fc882.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/wireguard-go-rs/libwg/osv-scanner.toml b/wireguard-go-rs/libwg/osv-scanner.toml
index 968f1c24d8..e735b63a40 100644
--- a/wireguard-go-rs/libwg/osv-scanner.toml
+++ b/wireguard-go-rs/libwg/osv-scanner.toml
@@ -88,3 +88,9 @@ reason = "wireguard-go does not use Proxy-Authorization or Proxy-Authenticate he
 id = "CVE-2025-22874" # GO-2025-3749
 ignoreUntil = 2025-09-12
 reason = "wireguard-go does not use crypto/x509"
+
+# Incorrect results returned from Rows.Scan in database/sql
+[[IgnoredVulns]]
+id = "CVE-2025-47907" # GO-2025-3849
+ignoreUntil = 2025-09-12
+reason = "wireguard-go does not use database/sql"
author	David Lönnhager <david.l@mullvad.net>	2025-08-08 10:18:15 +0200
committer	David Lönnhager <david.l@mullvad.net>	2025-08-08 10:18:29 +0200
commit	dcace5318b9d4cd84e48802e9c8a4cfd783fc882 (patch)
tree	d287b1fe30a657474bc28c7b23128e993d7d1e88
parent	71f5091332c37532a204ad609b9d727ef16500a7 (diff)
download	mullvadvpn-dcace5318b9d4cd84e48802e9c8a4cfd783fc882.tar.xz mullvadvpn-dcace5318b9d4cd84e48802e9c8a4cfd783fc882.zip