DependencyCheck icon indicating copy to clipboard operation
DependencyCheck copied to clipboard

Published 20 hours ago verified publisher icon jeremylong

[FP]: apache-mime4j as apache james server

Open twwd opened this issue 3 years ago • 1 comments
trafficstars

Package URl

pkg:maven/org.apache.james/[email protected]

CPE

cpe:/a:apache:james

CVE

No response

ODC Integration

{"label"=>"Maven Plugin"}

ODC Version

7.1.2, 7.1.1, 7.0.1, 7.0.0

Description

This false-positive was already reported in #4213 but the fix doesn't work.

twwd avatar Aug 24 '22 13:08 twwd

Maven Coordinates

<dependency>
   <groupId>org.apache.james</groupId>
   <artifactId>apache-mime4j</artifactId>
   <version>0.6</version>
</dependency>

Suppression rule:

<suppress base="true">
   <notes><![CDATA[
   FP per issue #4777
   ]]></notes>
   <packageUrl regex="true">^pkg:maven/org\.apache\.james/apache-mime4j@.*$</packageUrl>
   <cpe>cpe:/a:apache:james</cpe>
</suppress>

Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/2919582730

github-actions[bot] avatar Aug 24 '22 13:08 github-actions[bot]

approved

aikebah avatar Sep 20 '22 19:09 aikebah

Suppress rule has been added to the generatedSuppressions branch.

github-actions[bot] avatar Sep 20 '22 19:09 github-actions[bot]