In our Android App (Flutter), We've got a report from Google Play about Openssl vulnerability.
Defective OpenSSL version
Your app uses a defective version of the OpenSSL library, which can cause your app to crash. Update to a fixed version of OpenSSL.
Defective versions:
OpenSSL 1.1.1h
Versions between 1.1.1b and 1.1.1h are affected.
Migrate your app to OpenSSL 1.1.1i or higher.
I've traced where this is coming from and found out it is from libagora-rtm-sdk-jni.so . We are using v1.4.10 agora rtm sdk in our app.
I've tried downloading the latest sdk (1.5.1) from https://download.agora.io/rtmsdk/release/Agora_RTM_SDK_for_Android_v1_5_1.zip
but it's still using the same defective openssl version as you can see from screenshot below.
Could you help us update it to OpenSSL 1.1.1i or higher?
Thanks!
In our Android App (Flutter), We've got a report from Google Play about Openssl vulnerability.
I've traced where this is coming from and found out it is from
libagora-rtm-sdk-jni.so. We are using v1.4.10 agora rtm sdk in our app.I've tried downloading the latest sdk (1.5.1) from https://download.agora.io/rtmsdk/release/Agora_RTM_SDK_for_Android_v1_5_1.zip
but it's still using the same defective openssl version as you can see from screenshot below.
Could you help us update it to OpenSSL 1.1.1i or higher?
Thanks!