From 07f01920882fbbe177789f3903be8d20e94e619b Mon Sep 17 00:00:00 2001
From: Jeremy Long <jeremy.long@gmail.com>
Date: Thu, 13 Feb 2014 20:51:54 -0500
Subject: [PATCH] patch for issue #34 - hibernate3.jar no longer reports
 cpe:/a:jboss:jboss

Former-commit-id: 31cb24ff0052908bda1878057b5d9669e886e70b
---
 .../owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java  | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java b/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java
index 9c7cc64cd..d6bc6a461 100644
--- a/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java
+++ b/dependency-check-core/src/main/java/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.java
@@ -285,6 +285,9 @@ public class FalsePositiveAnalyzer extends AbstractAnalyzer {
                 } else if (i.getValue().startsWith("cpe:/a:m-core:m-core")
                         && !dependency.getEvidenceUsed().containsUsedString("m-core")) {
                     itr.remove();
+                } else if (i.getValue().startsWith("cpe:/a:jboss:jboss")
+                        && !dependency.getFileName().toLowerCase().matches("jboss-[\\d\\.]+(GA)?\\.jar")) {
+                    itr.remove();
                 }
             }
         }