Add missing CHANGES entry for OID 0x80 fix.

author Dr. Stephen Henson <steve@openssl.org>

Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)

committer Dr. Stephen Henson <steve@openssl.org>

Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)
author Dr. Stephen Henson <steve@openssl.org>
Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)
committer Dr. Stephen Henson <steve@openssl.org>
Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)
diff --git a/CHANGES b/CHANGES

index 06c72fe5b3b3d557d1fb1de959961cbfe2b58475..407b8a573cf1bbc6d632d298c93dd79dabc57cb8 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,10 @@
  
   Changes between 0.9.8k and 0.9.8l  [xx XXX xxxx]
  
+  *) Don't allow the use of leading 0x80 in OIDs. This is a violation of
+     X690 8.9.12 and can produce some misleading textual output of OIDs.
+     [Steve Henson, reported by Dan Kaminsky]
+
    *) Delete MD2 from algorithm tables. This follows the recommendation in 
       several standards that it is not used in new applications due to
       several cryptographic weaknesses. For binary compatibility reasons
author	Dr. Stephen Henson <steve@openssl.org>
	Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Sun, 9 Aug 2009 15:40:03 +0000 (15:40 +0000)