summaryrefslogtreecommitdiffhomepage
path: root/android/e2e
diff options
context:
space:
mode:
authorAlbin <albin@mullvad.net>2023-01-10 14:08:00 +0100
committerAlbin <albin@mullvad.net>2023-01-10 14:08:00 +0100
commit7c40479415138de84734fd563ea3a8e70d312cec (patch)
tree0973df99201573ec633d02a10f8bb4d0a526c8b4 /android/e2e
parentdfbb241b148cf39fa6e4c73644f81b9bd665b7ff (diff)
parent290ca19d7f3f93553c5711e352baa93d8444b2ce (diff)
downloadmullvadvpn-7c40479415138de84734fd563ea3a8e70d312cec.tar.xz
mullvadvpn-7c40479415138de84734fd563ea3a8e70d312cec.zip
Merge branch 'suppress-CVE-2021-4277'
Diffstat (limited to 'android/e2e')
-rw-r--r--android/e2e/e2e-suppression.xml20
1 files changed, 20 insertions, 0 deletions
diff --git a/android/e2e/e2e-suppression.xml b/android/e2e/e2e-suppression.xml
index 07836da418..2b57bc13e8 100644
--- a/android/e2e/e2e-suppression.xml
+++ b/android/e2e/e2e-suppression.xml
@@ -72,4 +72,24 @@
<packageUrl regex="true">^pkg:maven/org\.jetbrains\.kotlin/kotlin\-stdlib.*@.*$</packageUrl>
<cve>CVE-2022-24329</cve>
</suppress>
+ <suppress until="2023-06-01Z">
+ <notes><![CDATA[
+ This CVE is limited to processing of screenshots, which this app doesn't use.
+ https://nvd.nist.gov/vuln/detail/CVE-2021-4277
+
+ File name: legacy-support-core-utils-1.0.0.aar
+ ]]></notes>
+ <packageUrl regex="true">^pkg:maven/androidx\.legacy/legacy\-support\-core\-utils@.*$</packageUrl>
+ <cve>CVE-2021-4277</cve>
+ </suppress>
+ <suppress until="2023-06-01Z">
+ <notes><![CDATA[
+ This CVE is limited to processing of screenshots, which this app doesn't use.
+ https://nvd.nist.gov/vuln/detail/CVE-2021-4277
+
+ File name: common-30.3.1.jar
+ ]]></notes>
+ <packageUrl regex="true">^pkg:maven/com\.android\.tools/common@.*$</packageUrl>
+ <cve>CVE-2021-4277</cve>
+ </suppress>
</suppressions>
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.