From fa18ea185233d97b9f2771b1a3a88f46dc1610d4 Mon Sep 17 00:00:00 2001
From: Brandon Williams <brandonwilliams@apache.org>
Date: Mon, 23 Jan 2023 07:07:14 -0600
Subject: [PATCH] Suppress CVE-2022-41915

Patch by brandonwilliams; reviewed by bereng for CASSANDRA-18147
---
 .build/dependency-check-suppressions.xml | 1 +
 CHANGES.txt                              | 1 +
 2 files changed, 2 insertions(+)

diff --git a/.build/dependency-check-suppressions.xml b/.build/dependency-check-suppressions.xml
index cfe34b74e54e..6c148885648b 100644
--- a/.build/dependency-check-suppressions.xml
+++ b/.build/dependency-check-suppressions.xml
@@ -50,6 +50,7 @@
         <cve>CVE-2021-43797</cve>
         <cve>CVE-2022-24823</cve>
         <cve>CVE-2022-41881</cve>
+        <cve>CVE-2022-41915</cve>
     </suppress>
 
     <!-- https://issues.apache.org/jira/browse/CASSANDRA-14183 -->
diff --git a/CHANGES.txt b/CHANGES.txt
index aceaa87b59dc..7994824ad39e 100644
--- a/CHANGES.txt
+++ b/CHANGES.txt
@@ -1,5 +1,6 @@
 3.0.29
  * Introduce check for names of test classes (CASSANDRA-17964)
+ * Suppress CVE-2022-41915 (CASSANDRA-18147)
  * Suppress CVE-2021-1471, CVE-2021-3064, CVE-2021-4235 (CASSANDRA-18149)
  * Switch to snakeyaml's SafeConstructor (CASSANDRA-18150)
  * Expand build.dir property in rat targets (CASSANDRA-18183)