Clean up CHANGES

Reviewed-by: Matt Caswell <matt@openssl.org>
author: Emilia Kasper <emilia@openssl.org> 2014-11-20 12:20:02 +0100
committer: Emilia Kasper <emilia@openssl.org> 2014-11-20 14:57:15 +0100
commit: 31832e8ff1a3e731ea9fab41aef071a12709cf33 (patch)
tree: 24c7ae525154815c59e0d2758ad13d9d66fef680 /CHANGES
parent: e94a6c0ede623960728415b68650a595e48f5a43 (diff)
1 files changed, 1 insertions, 17 deletions
diff --git a/CHANGES b/CHANGES
index aa07cc09c6..6d23d8131d 100644
--- a/CHANGES
+++ b/CHANGES
@@ -303,23 +303,7 @@
      whose return value is often ignored. 
      [Steve Henson]
 
- Changes between 1.0.1j and 1.0.2 [xx XXX xxxx]
-
-   *) Tighten handling of the ChangeCipherSpec (CCS) message: reject
-      early CCS messages during renegotiation. (Note that because
-      renegotiation is encrypted, this early CCS was not exploitable.)
-      [Emilia Käsper]
-
-   *) Tighten client-side session ticket handling during renegotiation:
-      ensure that the client only accepts a session ticket if the server sends
-      the extension anew in the ServerHello. Previously, a TLS client would
-      reuse the old extension state and thus accept a session ticket if one was
-      announced in the initial ServerHello.
-
-      Similarly, ensure that the client requires a session ticket if one
-      was advertised in the ServerHello. Previously, a TLS client would
-      ignore a missing NewSessionTicket message.
-      [Emilia Käsper]
+ Changes between 1.0.1k and 1.0.2 [xx XXX xxxx]
 
   *) Accelerated NIST P-256 elliptic curve implementation for x86_64
      (other platforms pending).
author	Emilia Kasper <emilia@openssl.org>	2014-11-20 12:20:02 +0100
committer	Emilia Kasper <emilia@openssl.org>	2014-11-20 14:57:15 +0100
commit	31832e8ff1a3e731ea9fab41aef071a12709cf33 (patch)
tree	24c7ae525154815c59e0d2758ad13d9d66fef680 /CHANGES
parent	e94a6c0ede623960728415b68650a595e48f5a43 (diff)