projects / oweals / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
prepare for 0.9.8x release
[oweals/openssl.git] / CHANGES
diff --git a/CHANGES b/CHANGES
index e2ec1e1978c2c3906eef2600ebfa5503d5f65d29..e914a426ed4c685c3ebcafdc42f638c26caba64a 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -2,7 +2,15 @@
  OpenSSL CHANGES
  _______________
 
- Changes between 0.9.8w and 0.9.8x [xx XXX xxxx]
+ Changes between 0.9.8w and 0.9.8x [10 May 2012]
+
+  *) Sanity check record length before skipping explicit IV in DTLS
+     to fix DoS attack.
+
+     Thanks to Codenomicon for discovering this issue using Fuzz-o-Matic
+     fuzzing as a service testing platform.
+     (CVE-2012-2333)
+     [Steve Henson]
 
   *) Initialise tkeylen properly when encrypting CMS messages.
      Thanks to Solar Designer of Openwall for reporting this issue.
Unnamed repository; edit this file 'description' to name the repository.