diff --git a/CHANGES b/CHANGES index b11a528170ef2847ea360fb6bb77aa9d738ec253..ec05bca41b68ad8cb47671b6120f698be898f4df 100644 --- a/CHANGES +++ b/CHANGES @@ -2,17 +2,7 @@ OpenSSL CHANGES _______________ - Changes between 0.9.8d and 0.9.9 [xx XXX xxxx] - - *) Fix ASN.1 parsing of certain invalid structures that can result - in a denial of service. (CVE-2006-2937) [Steve Henson] - - *) Fix buffer overflow in SSL_get_shared_ciphers() function. - (CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team] - - *) Fix SSL client code which could crash if connecting to a - malicious SSLv2 server. (CVE-2006-4343) - [Tavis Ormandy and Will Drewry, Google Security Team] + Changes between 0.9.8e and 0.9.9 [xx XXX xxxx] *) Add an X509_CRL_METHOD structure to allow CRL processing to be redirected to external functions. This can be used to increase CRL handling