github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-03-22 09:09:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

fixed bug allowing more then a single vulnerability to be removed

Browse Source 
Former-commit-id: aa2e87885e7a3ddc4947a81c3c3e104630630e23
This commit is contained in:
Jeremy Long
2013-12-02 09:09:16 -05:00
parent 7eb82f2e84
commit 39c1624d42
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
dependency-check-core/src/main/java/org/owasp/dependencycheck/suppression/SuppressionRule.java
View File

@@ -264,8 +264,8 @@ public class SuppressionRule {
} }
if (hasCve() || hasCwe() || hasCvssBelow()) { if (hasCve() || hasCwe() || hasCvssBelow()) {
final Iterator<Vulnerability> itr = dependency.getVulnerabilities().iterator(); final Iterator<Vulnerability> itr = dependency.getVulnerabilities().iterator();
boolean remove = false; while (itr.hasNext()) {
while (!remove && itr.hasNext()) { boolean remove = false;
final Vulnerability v = itr.next(); final Vulnerability v = itr.next();
for (String entry : this.cve) { for (String entry : this.cve) {
if (entry.equalsIgnoreCase(v.getName())) { if (entry.equalsIgnoreCase(v.getName())) {