31232
Question:
This question already has an answer here:
<ul><li> <a href="/questions/24197777/google-play-and-openssl-warning-message" dir="ltr" rel="nofollow">Google Play and OpenSSL warning message</a> <span class="question-originals-answer-count"> 5 answers </span> </li> </ul>I am developing android apps in AndEngine and Cocos2dx.<br /> I have received a mail today from Google Play, that says: "One or more of your apps is running an outdated version of OpenSSL, which has multiple security vulnerabilities. You should update OpenSSL as soon as possible. ..."<br /> I download an app called bluebox testing(HeartBleed Scanner).<br /> What i found was, apps build using cocos2dx were the apps with openSSL while apps build using AndEngine were not in the list generated by heartbleed scanner.<br /> Is there anyone who knows the issue exactly and how to solve it?
Answer1:Right now i have found one solution. The apps build in cocos2dx have this line in Android.mk<br /> $(call import-module,extensions)<br /> I just removed that line and removed the errors.<br /> Clean build my app and run it again.<br /> It was surprisingly removed from open SSL list generated by HeartBleed Scanner. I hope it works for the guys using cocos2dx.
Answer2:open ssl 1.0.1g has a vulnerability that is fixed in 1.0.1h. Check out the latest post here:
<a href="http://www.openssl.org/news/vulnerabilities.html" rel="nofollow">http://www.openssl.org/news/vulnerabilities.html</a>
![Exception Using PayPal-PHP-SDK [Http response code 400]](/skin/wt/img/t.gif)