Open ZOlbrys opened 1 month ago
17
API 34
16.0.0
AGP 8.3.0
Gaming Services
The supplied version of gson in the FB SDK has a security issue (CVE-2022-25647).
gson
A newer version of gson without CVE-2022-25647 should be used
....com.facebook.android:facebook-android-sdk@16.0.0 › com.facebook.android:facebook-gamingservices@16.0.0 › com.google.code.gson:gson@2.8.8
Gson 2.8.8 is added via the gamingservices SDK, which has a security vulnerability, see https://www.cve.org/CVERecord?id=CVE-2022-25647
gamingservices
Checklist before submitting a bug report
Java version
17
Android version
API 34
Android SDK version
16.0.0
Installation platform & version
AGP 8.3.0
Package
Gaming Services
Goals
The supplied version of
gson
in the FB SDK has a security issue (CVE-2022-25647).Expected results
A newer version of
gson
without CVE-2022-25647 should be usedActual results
Gson 2.8.8 is added via the
gamingservices
SDK, which has a security vulnerability, see https://www.cve.org/CVERecord?id=CVE-2022-25647