Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security Vulnerabilities Related to Use of insufficiently random values in SDK #447

Open
Sathish03-MS opened this issue Feb 6, 2025 · 0 comments
Open

Security Vulnerabilities Related to Use of insufficiently random values in SDK #447

Sathish03-MS opened this issue Feb 6, 2025 · 0 comments
Labels
bug Something isn't working

Comments

@Sathish03-MS
Copy link

I am writing to bring to your attention some security vulnerabilities identified in your SDK that affect our application during compliance checks, specifically regarding the usage of Use of insufficiently random values in the following locations

File Path: androidx\activity\result\ActivityResultRegistry.java
Line 31. private Random mRandom = new Random();

Please review the identified occurrences and provide an update or patch addressing these vulnerabilities.
If possible, let us know the estimated timeline for the fix, as this issue directly impacts our app’s compliance with the Google Play Store’s policies.
We appreciate your work on this SDK and look forward to your response.

Thank you for your attention to this matter.
@Sathish03-MS Sathish03-MS added the bug Something isn't working label Feb 6, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Sathish03-MS