We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
pkg:maven/org.glassfish.hk2/[email protected]
cpe:2.3:a:eclipse:glassfish:1.0.3:*:*:*:*:*:*:*
CVE-2024-9329
{"label"=>"Maven Plugin"}
10.0.1
Another dependency under the glassfish org is being detected as eclipse glassfish, which recently had a published CVE released.
The text was updated successfully, but these errors were encountered:
Maven Coordinates
<dependency> <groupId>org.glassfish.hk2</groupId> <artifactId>osgi-resource-locator</artifactId> <version>1.0.3</version> </dependency>
Suppression rule:
<suppress base="true"> <notes><![CDATA[ FP per issue #7022 ]]></notes> <packageUrl regex="true">^pkg:maven/org\.glassfish\.hk2/osgi-resource-locator@.*$</packageUrl> <cpe>cpe:/a:eclipse:glassfish</cpe> </suppress>
Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/11241118161
Sorry, something went wrong.
Dupe of #7015, already fixed in #7016 but needs another "automated" FP report to be merged before it gets published.
No branches or pull requests
Package URl
pkg:maven/org.glassfish.hk2/[email protected]
CPE
cpe:2.3:a:eclipse:glassfish:1.0.3:*:*:*:*:*:*:*
CVE
CVE-2024-9329
ODC Integration
{"label"=>"Maven Plugin"}
ODC Version
10.0.1
Description
Another dependency under the glassfish org is being detected as eclipse glassfish, which recently had a published CVE released.
The text was updated successfully, but these errors were encountered: