From 3c5406b35cbbfd8d9f681727df0f306ad3418dc7 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Bodo=20M=C3=B6ller?= Date: Thu, 28 Sep 2006 13:50:41 +0000 Subject: [PATCH] All 0.9.8d patches have been applied to HEAD now, so we no longer need the redundant entries under the 0.9.9 heading. --- CHANGES | 12 +----------- 1 file changed, 1 insertion(+), 11 deletions(-) diff --git a/CHANGES b/CHANGES index b11a528170..ec05bca41b 100644 --- a/CHANGES +++ b/CHANGES @@ -2,17 +2,7 @@ OpenSSL CHANGES _______________ - Changes between 0.9.8d and 0.9.9 [xx XXX xxxx] - - *) Fix ASN.1 parsing of certain invalid structures that can result - in a denial of service. (CVE-2006-2937) [Steve Henson] - - *) Fix buffer overflow in SSL_get_shared_ciphers() function. - (CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team] - - *) Fix SSL client code which could crash if connecting to a - malicious SSLv2 server. (CVE-2006-4343) - [Tavis Ormandy and Will Drewry, Google Security Team] + Changes between 0.9.8e and 0.9.9 [xx XXX xxxx] *) Add an X509_CRL_METHOD structure to allow CRL processing to be redirected to external functions. This can be used to increase CRL handling -- 2.25.1