diff options
author | Matt Caswell <matt@openssl.org> | 2015-03-17 17:01:09 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2015-03-19 13:00:11 +0000 |
commit | ab1c3627b71c43c6bd8259119ac871093651f8a2 (patch) | |
tree | a4faf4247aea4f1a86ff2388f80d884da8ad0328 | |
parent | c30465847b1e493f43a53c6b0d000b1101e40384 (diff) |
Update NEWS file
Update the NEWS file with the latest entries from CHANGES ready for the
release.
Reviewed-by: Richard Levitte <levitte@openssl.org>
-rw-r--r-- | NEWS | 8 |
1 files changed, 7 insertions, 1 deletions
@@ -7,7 +7,13 @@ Major changes between OpenSSL 1.0.0q and OpenSSL 1.0.0r [under development] - o + o Segmentation fault in ASN1_TYPE_cmp fix (CVE-2015-0286) + o ASN.1 structure reuse memory corruption fix (CVE-2015-0287) + o PKCS7 NULL pointer dereferences fix (CVE-2015-0289) + o DoS via reachable assert in SSLv2 servers fix (CVE-2015-0293) + o Use After Free following d2i_ECPrivatekey error fix (CVE-2015-0209) + o X509_to_X509_REQ NULL pointer deref fix (CVE-2015-0288) + o Removed the export ciphers from the DEFAULT ciphers Major changes between OpenSSL 1.0.0p and OpenSSL 1.0.0q [15 Jan 2015] |