Stack Overflow
Stack Overflow

Questions tagged [android-security]

Tag used by Android in Security Alert messages to developers. The Security Alert message is often accompanied with a Google-Play rejection. AOSP instructions state to tag a question with it.

Tag used by Android in Security Alert messages to developers. The Security Alert message is often accompanied with a Google-Play rejection. AOSP instructions state to tag a question with it.

656 questions
0
votes
0 answers

Google OpenSSL's Security Vulnerabilities

i have received google warning related to OpenSSL version update and provided linux based command "$ unzip -p YourApp.apk | strings | grep "OpenSSL" to check OpenSSL version. I have tried cygwin and other tools but unable unable to execute this…
Haroon Ahmed
  • 11
  • 3
0
votes
0 answers

How to update openssl version in android?

I want to fix apps with OpenSSL cve-2014-0224 and other vulnerabilities in my android app. I am using WebView for integration with Instagram SDK.
komal relan
  • 1
0
votes
2 answers

Same Android version and same device model, but only one cannot download app

How is it possible that Galaxy s7 both with Android 6.0.1 behave differently in Play Store? One I can download. Another will say "Your device isn't compatible with this version." This is also true for Galaxy s6 with Android 5.1.1. This is not a once…
itsmarziparzi
  • 699
  • 7
  • 21
0
votes
1 answer

App not showing in Playstore for some model, but shows for other models that belongs to the same version

I have developed a game using Unity 4. My game does not show in Play Store for Galaxy s7, s7 Edge, and Note 5 when I sort through the game category. I can find it through search, but when I try to download, it says that it is not compatible.…
itsmarziparzi
  • 699
  • 7
  • 21
0
votes
1 answer

How to store user/password in android?

I am trying to create a simple app which connects to a mail server and retrieves emails periodically. I have read about AccountManager (http://developer.android.com/reference/android/.../AccountManager.html) and an excellent article on how to code a…
resp78
  • 1,414
  • 16
  • 37
0
votes
0 answers

Encoding/Decoding data across 2 android apps using KeyStore

I have 2 apps, that are signed with same keystore. I wan't to share sensitive data between those apps. For example I encrypt a string in application A. Put result in Context.MODE_WORLD_READABLE) SharedPreferences and read that data in application B…
Martynas Jurkus
  • 9,231
  • 13
  • 59
  • 101
0
votes
2 answers

Apache Cordova security vulnerability

I've recently uploaded an android app to Google Play and I've got the well known security vulnerability warning Apache Cordova security vulnerability. I'm a bit confused because I'm using Cordova CLI 6.0.0 and Cordova Android 5.1.1. What I'm doing…
acimutal
  • 2,155
  • 2
  • 17
  • 22
0
votes
0 answers

Google Play Warning

So now I've got this message from Google Play saying my app is at a security risk: WebViewClient.onReceivedSslError Now this seems to be a common message as I've seen many post about it. But in my case, I'm not sure why. I don't use this…
Benni
  • 969
  • 1
  • 19
  • 29
0
votes
2 answers

How to Handle SSL certification validation in proper way?

Hello my application is live and it is using "https" protocol. The Google Play Team throws warning as below. "Your app(s) listed at the end of this email use an unsafe implementation of the interface X509TrustManager. Specifically, the …
user4570857
0
votes
1 answer

Google X509Trust Manager scan for beta apps

Is google scanning only the production apps or is it also scanning the beta versions ?
user2628861
  • 1
  • 1
  • 2
0
votes
0 answers

How to add latest TLS certificate for https communication in lollipop apps

I want to add latest TLS certificates to my android app(Which should be supported by 5.1 Lillipop + versions). I have added TLS certificate for my previous versions,but some 5.1 versions are failing to establish https communication due to TLS…
Hari Enaganti
  • 359
  • 1
  • 4
  • 12
0
votes
0 answers

How to share key stored in Android key store system across application?

I have a SDK which is being used by many merchant applications. As all these applications use my SDK I want to expose the key stored in android keystore system generated by one application, to all the applications on that device. Is this possible in…
nsp
  • 378
  • 1
  • 4
  • 19
0
votes
0 answers

Should we also check for the number of signatures on Android tampering detection

I have this code (copied it from here: https://www.airpair.com/android/posts/adding-tampering-detection-to-your-android-app) to add tampering protection to my Android application. It is possible to submit an application to the Play Store with…
Sandro Machado
  • 9,921
  • 4
  • 36
  • 57
0
votes
0 answers

android virtual device is currently running in an emulator and cannot be deleted in appuse

Even though emulator is not running in AppUse, when I try to delete AVD file am getting error: Android virtual device is currently running in an emulator and cannot be deleted How to solve it?
Abhilash
  • 11
  • 1
0
votes
0 answers

Is requesting the android.permission.BRICK permission sufficient to protect exported BroadcastReceiver from rogue apps?

Consider the case of a BroadcastReceiver that listens to Wifi events and is registered in AndroidManifest.xml as follows :
mda
  • 13
  • 5
1 2 3
43 44