Fix documentation of X509_VERIFY_PARAM_add0_policy()

The function was incorrectly documented as enabling policy checking. Fixes: CVE-2023-0466 Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/20562)
author: Tomas Mraz <tomas@openssl.org> 2023-03-21 16:15:47 +0100
committer: Tomas Mraz <tomas@openssl.org> 2023-03-28 13:57:43 +0200
commit: fc814a30fc4f0bc54fcea7d9a7462f5457aab061 (patch)
tree: 63fd1fb008ad015c53e09fcbfe56d60cc1340941 /NEWS.md
parent: 07d8baf3367cbbf81877510e5102e6193da4bfe7 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/NEWS.md b/NEWS.md
index 23f918f604..9477662c82 100644
--- a/NEWS.md
+++ b/NEWS.md
@@ -21,6 +21,7 @@ OpenSSL 3.1
 
 ### Major changes between OpenSSL 3.1.0 and OpenSSL 3.1.1 [under development]
 
+  * Fixed documentation of X509_VERIFY_PARAM_add0_policy() ([CVE-2023-0466])
   * Fixed handling of invalid certificate policies in leaf certificates
     ([CVE-2023-0465])
   * Limited the number of nodes created in a policy tree ([CVE-2023-0464])
@@ -1448,6 +1449,7 @@ OpenSSL 0.9.x
   * Support for various new platforms
 
 <!-- Links -->
+[CVE-2023-0466]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0466
 [CVE-2023-0465]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0465
 [CVE-2023-0464]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0464
 [CVE-2023-0401]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0401
author	Tomas Mraz <tomas@openssl.org>	2023-03-21 16:15:47 +0100
committer	Tomas Mraz <tomas@openssl.org>	2023-03-28 13:57:43 +0200
commit	fc814a30fc4f0bc54fcea7d9a7462f5457aab061 (patch)
tree	63fd1fb008ad015c53e09fcbfe56d60cc1340941 /NEWS.md
parent	07d8baf3367cbbf81877510e5102e6193da4bfe7 (diff)