From 3bffdf0b87168c8b0b5a80c35b083d7ef36e8367 Mon Sep 17 00:00:00 2001 From: Nikolay Eskov Date: Thu, 19 Jun 2025 13:22:13 +0300 Subject: [PATCH] Add CVE-2021-43668 (syndtr/goleveldb) to '.nancy-ignore'. --- .nancy-ignore | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/.nancy-ignore b/.nancy-ignore index 57c0aff496..df19361119 100644 --- a/.nancy-ignore +++ b/.nancy-ignore @@ -1 +1,7 @@ CVE-2024-34478 # False positive, fixed in version 0.24.0 +# CVE-2021-43668 - problem in go ethereum at leveldb level, links: +# - https://ossindex.sonatype.org/vulnerability/CVE-2021-43668 +# - https://nvd.nist.gov/vuln/detail/CVE-2021-43668 - related to go-ethereum problem +# - https://github.com/ethereum/go-ethereum/issues/23866 - original issue in go-ethereum, closed due to lack of information +# - https://github.com/syndtr/goleveldb/issues/373 - issue in syndtr/goleveldb +CVE-2021-43668 # Ignored because we can't fix it and no update is available at the moment