Difference between revisions of "AntiFeature:KnownVuln"
Latest revision as of 12:27, 27 September 2017
This APK has a known security vulnerability, found by one of the scanners in _fdroidserver_.
- current APK has a weak MD5 signature aka AntiFeature:DisabledAlgorithm
- fix by making new release or rebuild to get an APK signed with the current signature algorithms
- uses a version of OpenSSL that has known vulnerabilities
- update the app to OpenSSL 1.0.2f/1.0.1r or higher. For more info, see How to address OpenSSL vulnerabilities in your apps