From a86f99c3afa0f9075085342ae029faf5cb3b417b Mon Sep 17 00:00:00 2001
From: James Rawlings <jrawlings@chainguard.dev>
Date: Fri, 12 Jul 2024 12:48:41 +0100
Subject: [PATCH] wordpress: CVE-2007-2627, CVE-2012-4271, CVE-2012-6527,
 CVE-2013-7240, CVE-2011-5216 (#6750)

The affected package from the Grype scan is the OCI entrypoint script that contains no PHP code

Signed-off-by: James Rawlings <jrawlings@chainguard.dev>
---
 wordpress.advisories.yaml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/wordpress.advisories.yaml b/wordpress.advisories.yaml
index 356c04ae0..e39e657e1 100644
--- a/wordpress.advisories.yaml
+++ b/wordpress.advisories.yaml
@@ -21,6 +21,11 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2024-07-12T09:56:15Z
+        type: false-positive-determination
+        data:
+          type: vulnerable-code-not-included-in-package
+          note: Affected package is an entrypoint script used to setup environment and config files, this doesn't include and wordpress php code
 
   - id: CGA-8gfh-h5vg-754q
     aliases:
@@ -39,6 +44,11 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2024-07-12T09:50:55Z
+        type: false-positive-determination
+        data:
+          type: vulnerable-code-not-included-in-package
+          note: Affected package is an entrypoint script used to setup environment and config files, this doesn't include and wordpress php code
 
   - id: CGA-g3j4-4p89-vgpq
     aliases:
@@ -57,6 +67,11 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2024-07-12T09:55:50Z
+        type: false-positive-determination
+        data:
+          type: vulnerable-code-not-included-in-package
+          note: Affected package is an entrypoint script used to setup environment and config files, this doesn't include and wordpress php code
 
   - id: CGA-j295-hqc3-w776
     aliases:
@@ -75,6 +90,11 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2024-07-12T09:54:47Z
+        type: false-positive-determination
+        data:
+          type: vulnerable-code-not-included-in-package
+          note: Affected package is an entrypoint script used to setup environment and config files, this doesn't include and wordpress php code
 
   - id: CGA-r3mv-fhmp-j2ph
     aliases:
@@ -93,3 +113,8 @@ advisories:
             componentType: apk
             componentLocation: /.PKGINFO
             scanner: grype
+      - timestamp: 2024-07-12T09:55:18Z
+        type: false-positive-determination
+        data:
+          type: vulnerable-code-not-included-in-package
+          note: Affected package is an entrypoint script used to setup environment and config files, this doesn't include and wordpress php code