From e0ec40ac098f921fe7eb53e2f5f5067706b911e6 Mon Sep 17 00:00:00 2001
From: Juho Leinonen <juho.leinonen@solita.fi>
Date: Thu, 29 Jun 2023 10:40:58 +0300
Subject: [PATCH] AE-1893: Suppress opensaml vulnerability, it was for opensaml
 c++ implementation

---
 etp-backend/nvd_suppressions.xml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/etp-backend/nvd_suppressions.xml b/etp-backend/nvd_suppressions.xml
index d13f724d3..267b6cf62 100644
--- a/etp-backend/nvd_suppressions.xml
+++ b/etp-backend/nvd_suppressions.xml
@@ -59,4 +59,13 @@
         <packageUrl regex="true">^pkg:maven/commons\-discovery/commons\-discovery@.*$</packageUrl>
         <cve>CVE-2022-0869</cve>
     </suppress>
+
+<!-- OpenSAML C++, not Java -->
+    <suppress>
+        <notes><![CDATA[
+   file name: opensaml-2.5.1-1.jar
+   ]]></notes>
+        <packageUrl regex="true">^pkg:maven/org\.opensaml/opensaml@.*$</packageUrl>
+        <cve>CVE-2017-16853</cve>
+    </suppress>
 </suppressions>