diff --git a/wireguard-go-rs/libwg/osv-scanner.toml b/wireguard-go-rs/libwg/osv-scanner.toml new file mode 100644 index 000000000000..d72ebe8f4ec3 --- /dev/null +++ b/wireguard-go-rs/libwg/osv-scanner.toml @@ -0,0 +1,18 @@ + +# Stack exhaustion in Decoder.Decode in encoding/gob +[[IgnoredVulns]] +id = "CVE-2024-34156" # GO-2024-3106 +ignoreUntil = 2024-12-18 +reason = "wireguard-go does not use the affected code" + +# Stack exhaustion in Parse in go/build/constraint +[[IgnoredVulns]] +id = "CVE-2024-34158" # GO-2024-3107 +ignoreUntil = 2024-12-18 +reason = "wireguard-go does not use the affected code" + +# Stack exhaustion in all Parse functions in go/parser +[[IgnoredVulns]] +id = "CVE-2024-34155" # GO-2024-3105 +ignoreUntil = 2024-12-18 +reason = "wireguard-go does not use the affected code"