From 09272c56f14bcce1ae15bd902ab395a8fc71deee Mon Sep 17 00:00:00 2001
From: Matt Caswell <matt@openssl.org>
Date: Tue, 24 Jan 2017 16:34:40 +0000
Subject: Update CHANGES and NEWS for new release

Reviewed-by: Richard Levitte <levitte@openssl.org>
---
 NEWS | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index 929794e5c0..06214a0cbf 100644
--- a/NEWS
+++ b/NEWS
@@ -7,7 +7,9 @@
 
   Major changes between OpenSSL 1.1.0c and OpenSSL 1.1.0d [under development]
 
-      o
+      o Truncated packet could crash via OOB read (CVE-2017-3731)
+      o Bad (EC)DHE parameters cause a client crash (CVE-2017-3730)
+      o BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
 
   Major changes between OpenSSL 1.1.0b and OpenSSL 1.1.0c [10 Nov 2016]
 
-- 
cgit v1.2.3