summaryrefslogtreecommitdiffstats
path: root/NEWS.md
diff options
context:
space:
mode:
authorMatt Caswell <matt@openssl.org>2024-01-29 16:19:24 +0000
committerMatt Caswell <matt@openssl.org>2024-01-30 12:59:06 +0000
commita220093b963987b64d6c0cd1fc967b5e5adb2ff4 (patch)
tree9a09f6c9fc5be6e700ecd246eb870ecd410b6977 /NEWS.md
parentebd24b37eccf8eb362ab7c5257b57f833eb2a873 (diff)
Update CHANGES.md and NEWS.md for new release
Reviewed-by: Tomas Mraz <tomas@openssl.org> Release: yes (Merged from https://github.com/openssl/openssl/pull/23423) (cherry picked from commit 6782406c069c3146cf7b5026811e3935e84e3ab8)
Diffstat (limited to 'NEWS.md')
-rw-r--r--NEWS.md3
1 files changed, 3 insertions, 0 deletions
diff --git a/NEWS.md b/NEWS.md
index 550464a411..6acb0a073c 100644
--- a/NEWS.md
+++ b/NEWS.md
@@ -20,6 +20,8 @@ OpenSSL 3.0
### Major changes between OpenSSL 3.0.12 and OpenSSL 3.0.13 [under development]
+ * Fixed PKCS12 Decoding crashes
+ ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC implementation corrupting vector registers on PowerPC
@@ -1468,6 +1470,7 @@ OpenSSL 0.9.x
<!-- Links -->
+[CVE-2024-0727]: https://www.openssl.org/news/vulnerabilities.html#CVE-2024-0727
[CVE-2023-6237]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-6237
[CVE-2023-6129]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-6129
[CVE-2023-5678]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-5678
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-20 13:51:19 +0000