always reject data >= n

[openssl.git] / CHANGES

diff --git a/CHANGES b/CHANGES
index 5137037cdacc8e86a557f3d6a7fb4b137665c37f..e53b18fb0861122e2ed92df078f94ea56c00e9a4 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -12,6 +12,18 @@
          *) applies to 0.9.6a/0.9.6b and 0.9.7
          +) applies to 0.9.7 only
 
+  *) In
+
+          RSA_eay_public_encrypt
+          RSA_eay_private_decrypt
+          RSA_eay_private_encrypt (signing)
+          RSA_eay_public_decrypt (signature verification)
+
+     (default implementations for RSA_public_encrypt,
+     RSA_private_decrypt, RSA_private_encrypt, RSA_public_decrypt),
+     always reject numbers >= n.
+     [Bodo Moeller]
+
   *) In crypto/rand/md_rand.c, set 'locking_thread' to current thread's ID
      *before* setting the 'crypto_lock_rand' flag.  The previous code had
      a race condition if 0 is a valid thread ID.