diff options
| author | Dr. Stephen Henson <steve@openssl.org> | 2010-10-10 12:21:23 +0000 |
|---|---|---|
| committer | Dr. Stephen Henson <steve@openssl.org> | 2010-10-10 12:21:23 +0000 |
| commit | a073129293fd1cc0dbb1325d36fa85eb3190feb0 (patch) | |
| tree | b48f6c66304f831c7aab8392750b5274777c9012 /CHANGES | |
| parent | 93fc0e0e40a1c0dedd5cbacf8b11caef7079b953 (diff) | |
PR: 2314
Submitted by: Mounir IDRASSI <mounir.idrassi@idrix.net>
Reviewed by: steve
Fix for double free bug in ssl/s3_clnt.c CVE-2010-2939
Diffstat (limited to 'CHANGES')
| -rw-r--r-- | CHANGES | 3 |
1 files changed, 3 insertions, 0 deletions
@@ -4,6 +4,9 @@ Changes between 0.9.8o and 0.9.8p [xx XXX xxxx] + *) Fix for double free bug in ssl/s3_clnt.c CVE-2010-2939 + [Steve Henson] + *) Don't reencode certificate when calculating signature: cache and use the original encoding instead. This makes signature verification of some broken encodings work correctly. |