diff options
author | Matt Caswell <matt@openssl.org> | 2016-01-27 13:41:16 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2016-01-28 14:41:19 +0000 |
commit | 502bed22a940598bad27555d2b5c5c27a1f2edf1 (patch) | |
tree | e984d245a7106e8a72aa18ff85af9c1ec83b9bc1 /NEWS | |
parent | e729aac19de7b41169be82e6e55c4c898de9470a (diff) | |
download | openssl-new-502bed22a940598bad27555d2b5c5c27a1f2edf1.tar.gz |
CHANGES and NEWS updates for release
Add details about the latest issues fixed in the forthcoming release.
Reviewed-by: Rich Salz <rsalz@openssl.org>
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 7 |
1 files changed, 6 insertions, 1 deletions
@@ -5,7 +5,7 @@ This file gives a brief overview of the major changes between each OpenSSL release. For more details please read the CHANGES file. - Major changes between OpenSSL 1.0.2e and OpenSSL 1.1.0 [in pre-release] + Major changes between OpenSSL 1.0.2f and OpenSSL 1.1.0 [in pre-release] o Support for ChaCha20 and Poly1305 added to libcrypto and libssl o Support for extended master secret @@ -33,6 +33,11 @@ directory location rather than --openssldir. The latter becomes the directory for certs, private key and openssl.cnf exclusively. + Major changes between OpenSSL 1.0.2e and OpenSSL 1.0.2f [28 Jan 2016] + + o DH small subgroups (CVE-2016-0701) + o SSLv2 doesn't block disabled ciphers (CVE-2015-3197) + Major changes between OpenSSL 1.0.2d and OpenSSL 1.0.2e [3 Dec 2015] o BN_mod_exp may produce incorrect results on x86_64 (CVE-2015-3193) |