We have been developing game Cocos2DX and we received the warning from google witch states that
Your app(s) listed at the end of this email utilize a version of OpenSSL that contains one or more security vulnerabilities.Please migrate your app(s) to OpenSSL 1.02f/1.01r or higher as soon as possible and increment the version number of the upgraded APK. Beginning July 11, 2016, Google Play will block publishing of any new apps or updates that use older versions of OpenSSL. If you’re using a 3rd party library that bundles OpenSSL, you’ll need to upgrade it to a version that bundles OpenSSL 1.02f/1.01r or higher. The vulnerabilities were addressed in OpenSSL 1.02f/1.01r. The latest versions of OpenSSL can be downloaded here. To confirm your OpenSSL version, you can do a grep search for ($ unzip -p YourApp.apk | strings | grep "OpenSSL").
This happened last year also and we fixed it but we have no solution for this for now as cocos2DX has to update their SDK. Does any one has any solution to this? Or can confirm if Cocos2D has this issue or some other 3rd party SDK.
You need to update libcurl.
Check this thread to see which version you need:
http://discuss.cocos2d-x.org/t/openssl-problem-again/28270/56