giangqaz
Reputation: 105
Google Play and OpenSSL vulnerability warning
When I submit new APK to Google Play, my APK is rejected with message:
Vulnerability APK Version(s)
OpenSSL
The vulnerabilities were fixed in OpenSSL versions beginning with 1.0.1h, 1.0.0m, and 0.9.8za.
To confirm your OpenSSL version, you can do a grep via:
$ unzip -p YourApp.apk | strings | grep "OpenSSL"
I checked my APK, and it using 1.0.1c version of OpenSSL. But from Android 6.0, Google recommends using BoringSSL instead of OpenSSL.
What should I do now?
Upvotes: 0
Views: 769
Answers (1)
Related Questions
- What is the difference between px, dip, dp, and sp?
- Cocos2dx, Google Play warning and vulnerable version of OpenSSL March 2016 New Warning
- Why Google play rejected my app they saying "for violating our dangerous products policy"
- GmsCore_OpenSSL can provoke app rejected from Google Play with all updated?
- Unpublished application Still getting Showing Warning from Google Play
- How to check the version of OpenSSL in Crosswalk for Android on Windows