Skip to content

[path_provider_android] Vulnerability is reported  #115462

New issue
New issue
Closed
flutter/plugins
#6744
Closed
[path_provider_android] Vulnerability is reported #115462
flutter/plugins
#6744
Assignees
stuartmorgan-g
Labels
p: path_providerPlugin that provides resolved paths to some platform directoriespackageflutter/packages repository. See also p: labels.platform-androidAndroid applications specificallyr: fixedIssue is closed as already fixed in a newer versionwill need additional triageThis issue or PR needs attention before being routed to secondary triage
@b055man

Description

@b055man
b055man
opened on Nov 16, 2022

Mend scanning tool returns path_provider_android as affected by CVE-2020-8908

Looking at the code, build.gradle indeed lists guava version that is considered vulnerable.

Even if the vulnerable code is not used in the plugin, it'd be nice if this was patched.

Metadata

Metadata

Assignees

Labels

p: path_providerPlugin that provides resolved paths to some platform directoriespackageflutter/packages repository. See also p: labels.platform-androidAndroid applications specificallyr: fixedIssue is closed as already fixed in a newer versionwill need additional triageThis issue or PR needs attention before being routed to secondary triage

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions