Skip to content

Commit

Permalink
Add two CVE IDs to the severity override list
Browse files Browse the repository at this point in the history
Signed-off-by: Josh Bressers <[email protected]>
  • Loading branch information
joshbressers committed Jul 9, 2024
1 parent 8dfe39e commit aeaa872
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions src/vunnel/providers/debian/parser.py
Original file line number Diff line number Diff line change
Expand Up @@ -355,9 +355,10 @@ def _normalize_json(self, ns_cve_dsalist=None): # noqa: PLR0912,PLR0915,C901

# HACK: when we can represent per-package severity or have a good mechanism
# for overriding upstream data, we should take this out.
if vid == "CVE-2023-44487":
severity_override = ["CVE-2023-44487", "CVE-2020-35525", "CVE-2020-35527"]
if vid in severity_override:
self.logger.info(
"clearing severity on CVE-2023-44487, see https://github.com/anchore/grype-db/issues/108#issuecomment-1796301073",
f"clearing severity on {vid}, see https://github.com/anchore/grype-db/issues/108#issuecomment-1796301073",
)
vuln_record["Vulnerability"]["Severity"] = "Unknown"

Expand Down

0 comments on commit aeaa872

Please sign in to comment.