Fix CVE-2024-49761 by ignoring it

mullvad · Oct 30, 2024 · 1d980eb · 1d980eb
1 parent ee37deb
commit 1d980eb
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 0 deletions.
diff --git a/ci/ios/upload-vm/osv-scanner.toml b/ci/ios/upload-vm/osv-scanner.toml
@@ -0,0 +1,5 @@
+# REXML ReDoS vulnerability
+[[IgnoredVulns]]
+id = "CVE-2024-49761"
+ignoreUntil = 2024-04-01
+reason = "The XML payload is generated by Apple tooling"
diff --git a/ios/osv-scanner.toml b/ios/osv-scanner.toml
@@ -0,0 +1,5 @@
+# REXML ReDoS vulnerability
+[[IgnoredVulns]]
+id = "CVE-2024-49761"
+ignoreUntil = 2024-04-01
+reason = "The XML payload is generated by Apple tooling"