suppress CVE-2023-4586 (#1624)

zalando · Sep 4, 2023 · a1b08be · a1b08be
1 parent 85a8b78
commit a1b08be
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/cve-suppressions.xml b/cve-suppressions.xml
@@ -12,5 +12,8 @@
 
         <!-- okhttp-4.11.0 - The vulernability is only in the brotli packages of okhttp, which are not used in this library -->
         <cve>CVE-2023-3782</cve>
+
+        <!-- vulnerability is in reserved state. No mitigation has been released yet -->
+        <cve>CVE-2023-4586</cve>
     </suppress>
 </suppressions>