diff options
author | Matt Caswell <matt@openssl.org> | 2015-03-17 17:01:09 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2015-03-19 12:59:31 +0000 |
commit | 6e24e1cdd20d568ca11a95943f34c6031c60a1df (patch) | |
tree | e790972ff5274d5daa4b6ca0effdc709325a7387 | |
parent | ffc69bd9421068db6161b8201a9a1f3ceaf908d7 (diff) | |
download | openssl-new-6e24e1cdd20d568ca11a95943f34c6031c60a1df.tar.gz |
Update NEWS file
Update the NEWS file with the latest entries from CHANGES ready for the
release.
Reviewed-by: Richard Levitte <levitte@openssl.org>
-rw-r--r-- | NEWS | 8 |
1 files changed, 7 insertions, 1 deletions
@@ -7,7 +7,13 @@ Major changes between OpenSSL 1.0.1l and OpenSSL 1.0.1m [under development] - o + o Segmentation fault in ASN1_TYPE_cmp fix (CVE-2015-0286) + o ASN.1 structure reuse memory corruption fix (CVE-2015-0287) + o PKCS7 NULL pointer dereferences fix (CVE-2015-0289) + o DoS via reachable assert in SSLv2 servers fix (CVE-2015-0293) + o Use After Free following d2i_ECPrivatekey error fix (CVE-2015-0209) + o X509_to_X509_REQ NULL pointer deref fix (CVE-2015-0288) + o Removed the export ciphers from the DEFAULT ciphers Major changes between OpenSSL 1.0.1k and OpenSSL 1.0.1l [15 Jan 2015] |