summaryrefslogtreecommitdiffstats
path: root/CHANGES
AgeCommit message (Expand)Author
2012-09-17Call OCSP Stapling callback after ciphersuite has been chosen, so theBen Laurie
2012-05-11PR: 2813Dr. Stephen Henson
2012-05-11PR: 2811Dr. Stephen Henson
2012-05-10prepare for next versionDr. Stephen Henson
2012-05-10prepare for 1.0.1c releaseOpenSSL_1_0_1cDr. Stephen Henson
2012-05-10Sanity check record length before skipping explicit IV in TLS 1.2, 1.1 andDr. Stephen Henson
2012-05-10Reported by: Solar Designer of OpenwallDr. Stephen Henson
2012-04-26Don't try to use unvalidated composite ciphers in FIPS modeDr. Stephen Henson
2012-04-26prepare for next versionDr. Stephen Henson
2012-04-26prepare for 1.0.1b releaseDr. Stephen Henson
2012-04-26CHANGES: clarify.Andy Polyakov
2012-04-26CHANGEs: fix typos and clarify.Andy Polyakov
2012-04-25Change value of SSL_OP_NO_TLSv1_1 to avoid clash with SSL_OP_ALL andDr. Stephen Henson
2012-04-25s23_clnt.c: ensure interoperability by maitaining client "version capability"Andy Polyakov
2012-04-19update for next versionDr. Stephen Henson
2012-04-19prepare for 1.0.1a releaseOpenSSL_1_0_1aDr. Stephen Henson
2012-04-19Check for potentially exploitable overflows in asn1_d2i_read_bioDr. Stephen Henson
2012-04-17Disable SHA-2 ciphersuites in < TLS 1.2 connections.Bodo Möller
2012-04-17Additional workaround for PR#2771Dr. Stephen Henson
2012-03-31CHANGES: mention vpaes fix and harmonize with 1.0.0.Andy Polyakov
2012-03-22update version to 1.0.1a-devDr. Stephen Henson
2012-03-14prepare for 1.0.1 releaseDr. Stephen Henson
2012-02-23correct CHANGESOpenSSL_1_0_1-beta3Dr. Stephen Henson
2012-02-16Fix bug in CVE-2011-4619: check we have really received a client helloDr. Stephen Henson
2012-02-15Additional compatibility fix for MDC2 signature format.Dr. Stephen Henson
2012-02-15An incompatibility has always existed between the format used for RSADr. Stephen Henson
2012-02-09Modify client hello version when renegotiating to enhance interop withDr. Stephen Henson
2012-01-18Fix for DTLS DoS issue introduced by fix for CVE-2011-4109.Dr. Stephen Henson
2012-01-17fix CHANGES entryDr. Stephen Henson
2012-01-05Update for 0.9.8s and 1.0.0f.Bodo Möller
2012-01-04update CHANGESDr. Stephen Henson
2012-01-04Submitted by: Robin Seggelmann <seggelmann@fh-muenster.de>, Michael Tuexen <t...Dr. Stephen Henson
2012-01-04Clear bytes used for block padding of SSL 3.0 records. (CVE-2011-4576)Dr. Stephen Henson
2012-01-04fix CHANGESDr. Stephen Henson
2012-01-04Only allow one SGC handshake restart for SSL/TLS. (CVE-2011-4619)Dr. Stephen Henson
2012-01-04Check GOST parameters are not NULL (CVE-2012-0027)Dr. Stephen Henson
2012-01-04Prevent malformed RFC3779 data triggering an assertion failure (CVE-2011-4577)Dr. Stephen Henson
2011-12-31update CHANGESDr. Stephen Henson
2011-12-31PR: 2658Dr. Stephen Henson
2011-12-19PR: 2563Dr. Stephen Henson
2011-12-19update CHANGES.Andy Polyakov
2011-12-19update CHANGESDr. Stephen Henson
2011-12-10remove old -attime code, new version includes all old functionalityDr. Stephen Henson
2011-12-02Resolve a stack set-up race condition (if the list of compressionBodo Möller
2011-12-02Fix ecdsatest.c.Bodo Möller
2011-12-02Fix BIO_f_buffer().Bodo Möller
2011-11-15Add TLS exporter.Ben Laurie
2011-11-15Add DTLS-SRTP.Ben Laurie
2011-11-14Next Protocol Negotiation.Ben Laurie
2011-10-19BN_BLINDING multi-threading fix.Bodo Möller
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-02 09:47:22 +0000