projects / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
All 0.9.8d patches have been applied to HEAD now, so we no longer need
[openssl.git] / CHANGES
diff --git a/CHANGES b/CHANGES
index b11a528170ef2847ea360fb6bb77aa9d738ec253..ec05bca41b68ad8cb47671b6120f698be898f4df 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -2,17 +2,7 @@
  OpenSSL CHANGES
  _______________
 
- Changes between 0.9.8d and 0.9.9  [xx XXX xxxx]
-
-  *) Fix ASN.1 parsing of certain invalid structures that can result
-     in a denial of service.  (CVE-2006-2937)  [Steve Henson]
-
-  *) Fix buffer overflow in SSL_get_shared_ciphers() function.
-     (CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team]
-
-  *) Fix SSL client code which could crash if connecting to a
-     malicious SSLv2 server.  (CVE-2006-4343)
-     [Tavis Ormandy and Will Drewry, Google Security Team]
+ Changes between 0.9.8e and 0.9.9  [xx XXX xxxx]
 
   *) Add an X509_CRL_METHOD structure to allow CRL processing to be redirected
      to external functions. This can be used to increase CRL handling 
Unnamed repository; edit this file 'description' to name the repository.