OpenSSL CHANGES
_______________
- Changes between 1.0.0 and 1.1.0 [xx XXX xxxx]
+ Changes between 1.0.1 and 1.1.0 [xx XXX xxxx]
*) Improve forward-security support: add functions
whose return value is often ignored.
[Steve Henson]
- Changes between 1.0.0a and 1.0.1 [xx XXX xxxx]
+ Changes between 1.0.0b and 1.0.1 [xx XXX xxxx]
*) Add EC_GFp_nistp224_method(), a 64-bit optimized implementation for
elliptic curve NIST-P224 with constant-time single point multiplication on
Changes between 0.9.8o and 0.9.8p [xx XXX xxxx]
+ *) Fix for double free bug in ssl/s3_clnt.c CVE-2010-2939
+ [Steve Henson]
+
+ *) Don't reencode certificate when calculating signature: cache and use
+ the original encoding instead. This makes signature verification of
+ some broken encodings work correctly.
+ [Steve Henson]
+
*) ec2_GF2m_simple_mul bugfix: compute correct result if the output EC_POINT
is also one of the inputs.
[Emilia Käsper <emilia.kasper@esat.kuleuven.be> (Google)]