summaryrefslogtreecommitdiffstats
path: root/CHANGES
diff options
context:
space:
mode:
authorBodo Möller <bodo@openssl.org>2010-02-23 10:36:41 +0000
committerBodo Möller <bodo@openssl.org>2010-02-23 10:36:41 +0000
commit3e4da3f7cbb728cf6574c164954c45070c1776a6 (patch)
treeadeb2cc0b208a0966b130a253a3b820cc90f540e /CHANGES
parent53b5d04715b6718bb4e609b7bd887495a480d8e5 (diff)
Always check bn_wexpend() return values for failure (CVE-2009-3245).
(The CHANGES entry covers the change from PR #2111 as well, submitted by Martin Olsson.) Submitted by: Neel Mehta
Diffstat (limited to 'CHANGES')
-rw-r--r--CHANGES3
1 files changed, 3 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 72baa4bf3b..a3a20d0ba1 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,9 @@
Changes between 0.9.8l and 0.9.8m [xx XXX xxxx]
+ *) Always check bn_wexpend() return values for failure. (CVE-2009-3245)
+ [Martin Olsson, Neel Mehta]
+
*) Fix X509_STORE locking: Every 'objs' access requires a lock (to
accommodate for stack sorting, always a write lock!).
[Bodo Moeller]
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-05 23:27:09 +0000