diff options
author | Matt Caswell <matt@openssl.org> | 2016-09-21 21:59:49 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2016-09-22 09:28:07 +0100 |
commit | f3e189613fdbe7404bfbbca2caccf5cbd19e2ffc (patch) | |
tree | 5ddc7c2baa3f52d5bd5fe838496c97a3b4527aee /NEWS | |
parent | d3c9d6e99f075e6fbdab94db00b220cfa08b5c4b (diff) |
Updates CHANGES and NEWS for new release
Reviewed-by: Richard Levitte <levitte@openssl.org>
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 7 |
1 files changed, 6 insertions, 1 deletions
@@ -7,7 +7,12 @@ Major changes between OpenSSL 1.1.0 and OpenSSL 1.1.0a [under development] - o + o OCSP Status Request extension unbounded memory growth (CVE-2016-6304) + o SSL_peek() hang on empty record (CVE-2016-6305) + o Excessive allocation of memory in tls_get_message_header() + (CVE-2016-6307) + o Excessive allocation of memory in dtls1_preprocess_fragment() + (CVE-2016-6308) Major changes between OpenSSL 1.0.2h and OpenSSL 1.1.0 [25 Aug 2016] |