X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=CHANGES;h=1b735ea06fc4b12bd65649c9b3b5ab237c55a8fd;hp=470435fe821ca2bbd4e04821a2c76ff2699e28c4;hb=3d8accc3ae7a6899ac67719bd9e7f24892de4f21;hpb=413c4f45ed0508d2242638696b7665f499d68265

diff --git a/CHANGES b/CHANGES
index 470435fe82..1b735ea06f 100644
--- a/CHANGES
+++ b/CHANGES
@@ -5,6 +5,19 @@
 
  Changes between 0.9.1c and 0.9.2
 
+  *) Really fix the ASN1 IMPLICIT bug this time... Partial support for private
+     key usage extension and fuller support for authority key id.
+     [Steve Henson]
+
+  *) Add OAEP encryption for the OpenSSL crypto library. OAEP is the improved
+     padding method for RSA, which is recommended for new applications in PKCS
+     #1 v2.0 (RFC 2437, October 1998).
+     OAEP (Optimal Asymmetric Encryption Padding) has better theoretical
+     foundations than the ad-hoc padding used in PKCS #1 v1.5. It is secure
+     against Bleichbacher's attack on RSA.
+     [Ulf Moeller <ulf@fitug.de>, reformatted, corrected and integrated by
+      Ben Laurie]
+
   *) Updates to the new SSL compression code
      [Eric A. Young, (from changes to C2Net SSLeay, integrated by Mark Cox)]
 
@@ -16,7 +29,7 @@
 
   *) Run extensive memory leak checks on SSL apps. Fixed *lots* of memory
      leaks in ssl/ relating to new X509_get_pubkey() behaviour. Also fixes
-     in apps/ and an unrellated leak in crypto/dsa/dsa_vrf.c
+     in apps/ and an unrelated leak in crypto/dsa/dsa_vrf.c
      [Steve Henson]
 
   *) Support for RAW extensions where an arbitrary extension can be