Put DES into "not default" category.

Add CVE to CHANGES Reviewed-by: Emilia Käsper <emilia@openssl.org>
author: Rich Salz <rsalz@openssl.org> 2016-08-18 08:56:42 -0400
committer: Matt Caswell <matt@openssl.org> 2016-08-24 14:05:52 +0100
commit: ef28891bab7054667f2f6739f6d376c38b3ca1cc (patch)
tree: f0836691169fc07d0ee93b7bd15496a87b9b65c0 /CHANGES
parent: d33726b92e09605a088369d0e01c99d138c0524f (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/CHANGES b/CHANGES
index fb4e7a53db..78a5a4d51c 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,8 +4,9 @@
 
  Changes between 1.0.2h and 1.1.0  [xx XXX xxxx]
 
-  *) Because of the SWEET32 attack, 3DES cipher suites have been disabled by
-     default like RC4.  See the RC4 item below to re-enable both.
+  *) To mitigate the SWEET32 attack (CVE-2016-2183), 3DES cipher suites
+     have been disabled by default and removed from DEFAULT, just like RC4.
+     See the RC4 item below to re-enable both.
      [Rich Salz]
 
   *) The method for finding the storage location for the Windows RAND seed file
author	Rich Salz <rsalz@openssl.org>	2016-08-18 08:56:42 -0400
committer	Matt Caswell <matt@openssl.org>	2016-08-24 14:05:52 +0100
commit	ef28891bab7054667f2f6739f6d376c38b3ca1cc (patch)
tree	f0836691169fc07d0ee93b7bd15496a87b9b65c0 /CHANGES
parent	d33726b92e09605a088369d0e01c99d138c0524f (diff)