Add 3.0.9 to table of validated versions

3.0.9 has been validated so should be in the table of validated versions
on the the download page.

Reviewed-by: Anton Arapov <anton@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/web/pull/467)

diff --git a/source/fips-doc/openssl-3.0.9-security-policy-2024-01-12.pdf b/source/fips-doc/openssl-3.0.9-security-policy-2024-01-12.pdf
new file mode 100644 (file)
index 0000000..4397cce
Binary files /dev/null and b/source/fips-doc/openssl-3.0.9-security-policy-2024-01-12.pdf differ

diff --git a/source/index.md.tt b/source/index.md.tt
index e12fa9e6ae7f2f917062928995220004e191c6d8..4c435cd516e04442e760518130842f6b05534cc7 100644 (file)
--- a/source/index.md.tt
+++ b/source/index.md.tt
@@ -34,16 +34,19 @@ these older versions are encouraged to upgrade to 3.2 or 3.0 as soon as
 possible. Extended support for 1.1.1 and 1.0.2 to gain access to security fixes
 for those versions is [available](/support/contracts.html).
 
-The following OpenSSL version(s) are FIPS validated:
+The following OpenSSL version(s) are FIPS validated. Versions marked as historic
+were previously validated, but are no longer listed on the current certificate:
 
  OpenSSL Version  |  Certificate  |  Security Policy 
 :-: | :-: | :-:
+3.0.9 | [certificate][cert4282] | [security policy][secpol 3.0.9]
 3.0.8 | [certificate][cert4282] | [security policy][secpol 3.0.8]
-3.0.0 | [certificate][cert4282] | [security policy][secpol 3.0.0]
+3.0.0 (historic) | [certificate][cert4282] | [security policy][secpol 3.0.0]
 
 [cert4282]: https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/4282
 [secpol 3.0.0]: fips-doc/openssl-3.0.0-security-policy-2023-01-26.pdf
 [secpol 3.0.8]: fips-doc/openssl-3.0.8-security-policy-2023-05-05.pdf
+[secpol 3.0.9]: fips-doc/openssl-3.0.9-security-policy-2024-01-12.pdf
 
 <br>
 For a list of CVEs and their impact on validated FIPS providers, visit the