From 82b0bf0b8792bdc113cadc04a1f9d40f0e0cfbfc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bodo=20M=C3=B6ller?= <bodo@openssl.org>
Date: Sat, 13 Apr 2002 22:47:20 +0000
Subject: Implement known-IV countermeasure.

Fix length checks in ssl3_get_client_hello().

Use s->s3->in_read_app_data differently to fix ssl3_read_internal().
---
 STATUS | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

(limited to 'STATUS')

diff --git a/STATUS b/STATUS
index 7853d9ff50..3744876fbf 100644
--- a/STATUS
+++ b/STATUS
@@ -1,6 +1,6 @@
 
   OpenSSL STATUS                           Last modified at
-  ______________                           $Date: 2002/03/11 09:36:04 $
+  ______________                           $Date: 2002/04/13 22:47:04 $
 
   DEVELOPMENT STATE
 
@@ -62,10 +62,6 @@
 
   NEEDS PATCH
 
-    o  An (optional) countermeasure against the predictable-IV CBC
-       weakness in SSL/TLS should be added; see
-       http://www.openssl.org/~bodo/tls-cbc.txt
-
     o  apps/ca.c: "Sign the certificate?" - "n" creates empty certificate file
 
     o  "OpenSSL STATUS" is never up-to-date.
-- 
cgit v1.2.3