RT3682: Avoid double-free on OCSP parse error

[openssl.git] / CHANGES

diff --git a/CHANGES b/CHANGES
index 6faf64424a56f6dcec8371c38780bddd94715de3..fae11230fc8891bb8c2b51f5ed45ca527f0a90fe 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -41,6 +41,10 @@
      code and the associated standard is no longer considered fit-for-purpose.
      [Matt Caswell]
 
+  *) RT2547 was closed.  When generating a private key, try to make the
+     output file readable only by the owner.  This behavior change might
+     be noticeable when interacting with other software.
+
   *) Added HTTP GET support to the ocsp command.
      [Rich Salz]