Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-68876

Usage of insecure port allocator plugin

XMLWordPrintable

      Android Emulator Plugin has Port Allocator ≥ 1.8 as a required dependency.

      Port Allocator Plugin has not been updated in 9 years.  It has a security advisory SECURITY-1441 (CVE-2019-10350)

      How can this be resolved? Switch Android Emulator to use an alternative to Port Allocator? Adopt Port Allocator and fix the advisory and release a new version of Port Allocator that would be safe to use? Something else?

       

          [JENKINS-68876] Usage of insecure port allocator plugin

          Mark Symons created issue -
          Nikolas Falco made changes -
          Priority Original: Critical [ 2 ] New: Minor [ 4 ]
          Nikolas Falco made changes -
          Labels Original: dependencies security New: dependencies

            nfalco Nikolas Falco
            msymons Mark Symons
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: