diff options
author | Jung-uk Kim <jkim@FreeBSD.org> | 2014-04-08 20:15:18 +0000 |
---|---|---|
committer | Jung-uk Kim <jkim@FreeBSD.org> | 2014-04-08 20:15:18 +0000 |
commit | 06369e3974fbc83d3778807c090fbe69f20a27d4 (patch) | |
tree | 287eb1e7dc05df721bd9cce14889bd9c693295e3 /NEWS | |
parent | 2dc7f78169ea4545102b8d9b0604f785cdc798f5 (diff) | |
download | src-06369e3974fbc83d3778807c090fbe69f20a27d4.tar.gz src-06369e3974fbc83d3778807c090fbe69f20a27d4.zip |
Import OpenSSL 1.0.1g.vendor/openssl/1.0.1g
Approved by: benl (maintainer)
Notes
Notes:
svn path=/vendor-crypto/openssl/dist/; revision=264271
svn path=/vendor-crypto/openssl/1.0.1g/; revision=264272; tag=vendor/openssl/1.0.1g
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -5,8 +5,15 @@ This file gives a brief overview of the major changes between each OpenSSL release. For more details please read the CHANGES file. + Major changes between OpenSSL 1.0.1f and OpenSSL 1.0.1g [7 Apr 2014] + + o Fix for CVE-2014-0160 + o Add TLS padding extension workaround for broken servers. + o Fix for CVE-2014-0076 + Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014] + o Don't include gmt_unix_time in TLS server and client random values o Fix for TLS record tampering bug CVE-2013-4353 o Fix for TLS version checking bug CVE-2013-6449 o Fix for DTLS retransmission bug CVE-2013-6450 |