diff options
| author | Mark J. Cox <mark@openssl.org> | 2010-03-12 08:36:44 +0000 |
|---|---|---|
| committer | Mark J. Cox <mark@openssl.org> | 2010-03-12 08:36:44 +0000 |
| commit | fb75f349b75c8dda6edd56a6d3396153099cc2d8 (patch) | |
| tree | dde6e9f7f2fc0ef7e44b630ee43e4dee0e50dbe4 | |
| parent | a907165250428fb06cc7a12d75274a9bbf7fe126 (diff) | |
This entry was in 0.9.8m changelog but missing from here, since it's
security relevent we'd better list it.
| -rw-r--r-- | CHANGES | 5 |
1 files changed, 4 insertions, 1 deletions
@@ -945,7 +945,10 @@ could be crashed if the relevant tables were not present (e.g. chrooted). [Tomas Hoger <thoger@redhat.com>] - Changes between 0.9.8l and 0.9.8m [xx XXX xxxx] + Changes between 0.9.8l and 0.9.8m [25 Feb 2010] + + *) Always check bn_wexpend() return values for failure. (CVE-2009-3245) + [Martin Olsson, Neel Mehta] *) Fix X509_STORE locking: Every 'objs' access requires a lock (to accommodate for stack sorting, always a write lock!). |