X-Git-Url: https://git.librecmc.org/?a=blobdiff_plain;f=NEWS;h=582d66eb5a1d288d238a2e48e6c0f47a0b27091a;hb=eb5de0ce576df7b29d0730206bac801a0f6b808f;hp=979cb053732009e4905b5b28114efa2ac912255a;hpb=91eaf079b7430cb4ebb7f3ccabe74aa383b27c4e;p=oweals%2Fopenssl.git

diff --git a/NEWS b/NEWS
index 979cb05373..582d66eb5a 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,20 @@
   This file gives a brief overview of the major changes between each OpenSSL
   release. For more details please read the CHANGES file.
 
+  Major changes between OpenSSL 1.1.0e and OpenSSL 1.1.0f [under development]
+
+      o
+
+  Major changes between OpenSSL 1.1.0d and OpenSSL 1.1.0e [16 Feb 2017]
+
+      o Encrypt-Then-Mac renegotiation crash (CVE-2017-3733)
+
+  Major changes between OpenSSL 1.1.0c and OpenSSL 1.1.0d [26 Jan 2017]
+
+      o Truncated packet could crash via OOB read (CVE-2017-3731)
+      o Bad (EC)DHE parameters cause a client crash (CVE-2017-3730)
+      o BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732)
+
   Major changes between OpenSSL 1.1.0b and OpenSSL 1.1.0c [10 Nov 2016]
 
       o ChaCha20/Poly1305 heap-buffer-overflow (CVE-2016-7054)