From 39c1624d425734ec2f32911a50f1254d50fc8a6b Mon Sep 17 00:00:00 2001
From: Jeremy Long <jeremy.long@gmail.com>
Date: Mon, 2 Dec 2013 09:09:16 -0500
Subject: [PATCH] fixed bug allowing more then a single vulnerability to be
 removed

Former-commit-id: aa2e87885e7a3ddc4947a81c3c3e104630630e23
---
 .../owasp/dependencycheck/suppression/SuppressionRule.java    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionRule.java b/dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionRule.java
index 56d427066..e3d2e9670 100644
--- a/dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionRule.java
+++ b/dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionRule.java
@@ -264,8 +264,8 @@ public class SuppressionRule {
         }
         if (hasCve() || hasCwe() || hasCvssBelow()) {
             final Iterator<Vulnerability> itr = dependency.getVulnerabilities().iterator();
-            boolean remove = false;
-            while (!remove && itr.hasNext()) {
+            while (itr.hasNext()) {
+                boolean remove = false;
                 final Vulnerability v = itr.next();
                 for (String entry : this.cve) {
                     if (entry.equalsIgnoreCase(v.getName())) {