Violation of cve-2014-0224


#1

Hi!
I’m developing an android 3x app working fine…
Now I just implemented the Fingerprint AIO native plugin and when deploying the APK to the play store, it’s rejected because of a violation of cve-2014-0224 (SSL).

I’m not sure (I don’t think) the fingerprint plugin is the bad one, but I just don’t know…
I’m developing on a Windows 10 workstation and I believe all libs (node, ionic, cordova etc etc) are up-to-date.

This is more info about the rejection:
https://support.google.com/faqs/answer/6324910

[update]
OK, it’s getting weird now… If I revert my source code to the last release, and update the version number to create a new release of it, it’s rejected as well…
[/update]


#2

Turns out deleting all files from disk and re-clone from source repository solves the problem…