summaryrefslogtreecommitdiffstats
path: root/CHANGES
AgeCommit message (Expand)Author
2014-01-06Prepare for 1.0.0l releaseOpenSSL_1_0_0lDr. Stephen Henson
2013-12-20Fix DTLS retransmission from previous session.Dr. Stephen Henson
2013-10-04Merge branch 'rob-100' into OpenSSL_1_0_0-stableBen Laurie
2013-10-04Update CHANGES.Rob Stradling
2013-09-16Sync CHANGES and NEWS files.Bodo Moeller
2013-02-06prepare for next versionDr. Stephen Henson
2013-02-05prepare for releaseOpenSSL_1_0_0kDr. Stephen Henson
2013-02-05Update CHANGES and NEWSDr. Stephen Henson
2013-02-05Don't try and verify signatures if key is NULL (CVE-2013-0166)Dr. Stephen Henson
2012-10-04Backport OCSP Stapling fix.Ben Laurie
2012-05-11PR: 2813Dr. Stephen Henson
2012-05-10prepare for next versionDr. Stephen Henson
2012-05-10prepare for 1.0.0j releaseOpenSSL_1_0_0jDr. Stephen Henson
2012-05-10Sanity check record length before skipping explicit IV in DTLSDr. Stephen Henson
2012-05-10Reported by: Solar Designer of OpenwallDr. Stephen Henson
2012-04-19prepare for next versionDr. Stephen Henson
2012-04-19prepare for 1.0.0i releaseOpenSSL_1_0_0iDr. Stephen Henson
2012-04-19Check for potentially exploitable overflows in asn1_d2i_read_bioDr. Stephen Henson
2012-03-12prepare for next versionDr. Stephen Henson
2012-03-12prepare for releaseDr. Stephen Henson
2012-03-12Fix for CMS/PKCS7 MMA. If RSA decryption fails use a random key andDr. Stephen Henson
2012-02-16Fix bug in CVE-2011-4619: check we have really received a client helloDr. Stephen Henson
2012-01-18prepare for next versionDr. Stephen Henson
2012-01-18prepare for releaseOpenSSL_1_0_0gDr. Stephen Henson
2012-01-18Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.Dr. Stephen Henson
2012-01-17fix CHANGES entryDr. Stephen Henson
2012-01-05Update for 0.9.8s.Bodo Möller
2012-01-04update for next versionDr. Stephen Henson
2012-01-04prepare for releaseOpenSSL_1_0_0fDr. Stephen Henson
2012-01-04Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>, Michael Tuexen <t...Dr. Stephen Henson
2012-01-04Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576)Dr. Stephen Henson
2012-01-04Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619)Dr. Stephen Henson
2012-01-04Check GOST parameters are not NULL (CVE-2012-0027)Dr. Stephen Henson
2012-01-04Prevent malformed RFC3779 data triggering an assertion failure (CVE-2011-4577)Dr. Stephen Henson
2011-12-19PR: 2563Dr. Stephen Henson
2011-12-02Resolve a stack set-up race condition (if the list of compressionBodo Möller
2011-12-02Fix ecdsatest.c.Bodo Möller
2011-12-02Fix BIO_f_buffer().Bodo Möller
2011-10-19BN_BLINDING multi-threading fix.Bodo Möller
2011-10-13In ssl3_clear, preserve s3->init_extra along with s3->rbuf.Bodo Möller
2011-09-06prepare for next versionDr. Stephen Henson
2011-09-06update versions and dates for releaseOpenSSL_1_0_0eDr. Stephen Henson
2011-09-06Initialise X509_STORE_CTX properly so CRLs with nextUpdate date in the pastDr. Stephen Henson
2011-09-05(EC)DH memory handling fixes.Bodo Möller
2011-09-05Fix memory leak on bad inputs.Bodo Möller
2011-08-14Remove hard coded ecdsaWithSHA1 hack in ssl routines and check for RSADr. Stephen Henson
2011-06-15Complete the version history (include information on unreleasedBodo Möller
2011-05-25Fix the ECDSA timing attack mentioned in the paper at:Dr. Stephen Henson
2011-02-08Sync with 0.9.8 branch.Bodo Möller
2011-02-08start 1.0.0e-devBodo Möller
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-27 17:00:32 +0000