SWEET32 (CVE-2016-2183): Move DES from HIGH to MEDIUM

[openssl.git] / CHANGES

diff --git a/CHANGES b/CHANGES
index c3d3d7aab1771f47e74d3d5da25e5ac969c294a2..6502fc3efca464aa6fd38742bca92c70181004d5 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -6,6 +6,10 @@
 
   *)
 
+  *) In order to mitigate the SWEET32 attack (CVE-2016-2183),
+     the DES ciphers were moved from HIGH to MEDIUM.
+     [Rich Salz]
+
  Changes between 1.0.2g and 1.0.2h [3 May 2016]
 
   *) Prevent padding oracle in AES-NI CBC MAC check