Add heartbeat extension bounds check.
[openssl.git] / CHANGES
2014-04-07 Dr. Stephen HensonAdd heartbeat extension bounds check.
2014-04-05 Dr. Stephen HensonSet TLS padding extension value.
2014-03-12 Dr. Stephen HensonFix for CVE-2014-0076
2014-02-05 Dr. Stephen HensonBackport TLS padding extension from master.
2014-01-06 Dr. Stephen HensonPrepare for 1.0.1g-dev
2014-01-06 Dr. Stephen HensonPrepare for 1.0.1f release OpenSSL_1_0_1f
2014-01-06 Dr. Stephen HensonFix for TLS record tampering bug CVE-2013-4353
2013-12-20 Dr. Stephen HensonFix DTLS retransmission from previous session.
2013-10-19 Ben LaurieMerge branch 'no_gmt_unix_time' of git://
2013-09-16 Rob StradlingUpdate CHANGES.
2013-09-16 Bodo MoellerSync CHANGES and NEWS files.
2013-02-11 Dr. Stephen Hensonupdate CHANGES
2013-02-11 Dr. Stephen Hensonprepare for next version
2013-02-11 Dr. Stephen Hensonprepare for release
2013-02-06 Dr. Stephen Hensonprepare for next version
2013-02-04 Dr. Stephen Hensontypo OpenSSL_1_0_1d
2013-02-04 Dr. Stephen Hensontypo
2013-02-04 Dr. Stephen HensonAdd CHANGES entries.
2013-01-31 Dr. Stephen HensonMerge branch 'ben/timing-1.0.1' into OpenSSL_1_0_1...
2013-01-29 Dr. Stephen HensonDon't try and verify signatures if key is NULL (CVE...
2012-12-13 Ben LaurieMake verify return errors.
2012-09-17 Ben LaurieCall OCSP Stapling callback after ciphersuite has been...
2012-05-11 Dr. Stephen HensonPR: 2813
2012-05-11 Dr. Stephen HensonPR: 2811
2012-05-10 Dr. Stephen Hensonprepare for next version
2012-05-10 Dr. Stephen Hensonprepare for 1.0.1c release OpenSSL_1_0_1c
2012-05-10 Dr. Stephen HensonSanity check record length before skipping explicit...
2012-05-10 Dr. Stephen HensonReported by: Solar Designer of Openwall
2012-04-26 Dr. Stephen HensonDon't try to use unvalidated composite ciphers in FIPS...
2012-04-26 Dr. Stephen Hensonprepare for next version
2012-04-26 Dr. Stephen Hensonprepare for 1.0.1b release
2012-04-26 Andy PolyakovCHANGES: clarify.
2012-04-26 Andy PolyakovCHANGEs: fix typos and clarify.
2012-04-25 Dr. Stephen HensonChange value of SSL_OP_NO_TLSv1_1 to avoid clash with...
2012-04-25 Andy Polyakovs23_clnt.c: ensure interoperability by maitaining clien...
2012-04-19 Dr. Stephen Hensonupdate for next version
2012-04-19 Dr. Stephen Hensonprepare for 1.0.1a release OpenSSL_1_0_1a
2012-04-19 Dr. Stephen HensonCheck for potentially exploitable overflows in asn1_d2i...
2012-04-17 Bodo MöllerDisable SHA-2 ciphersuites in < TLS 1.2 connections.
2012-04-17 Dr. Stephen HensonAdditional workaround for PR#2771
2012-03-31 Andy PolyakovCHANGES: mention vpaes fix and harmonize with 1.0.0.
2012-03-22 Dr. Stephen Hensonupdate version to 1.0.1a-dev
2012-03-14 Dr. Stephen Hensonprepare for 1.0.1 release
2012-02-23 Dr. Stephen Hensoncorrect CHANGES OpenSSL_1_0_1-beta3
2012-02-16 Dr. Stephen HensonFix bug in CVE-2011-4619: check we have really received...
2012-02-15 Dr. Stephen HensonAdditional compatibility fix for MDC2 signature format.
2012-02-15 Dr. Stephen HensonAn incompatibility has always existed between the forma...
2012-02-09 Dr. Stephen HensonModify client hello version when renegotiating to enhan...
2012-01-18 Dr. Stephen HensonFix for DTLS DoS issue introduced by fix for CVE-2011...
2012-01-17 Dr. Stephen Hensonfix CHANGES entry
2012-01-05 Bodo MöllerUpdate for 0.9.8s and 1.0.0f.
2012-01-04 Dr. Stephen Hensonupdate CHANGES
2012-01-04 Dr. Stephen HensonSubmitted by: Robin Seggelmann <seggelmann@fh-muenster...
2012-01-04 Dr. Stephen HensonClear bytes used for block padding of SSL 3.0 records...
2012-01-04 Dr. Stephen Hensonfix CHANGES
2012-01-04 Dr. Stephen HensonOnly allow one SGC handshake restart for SSL/TLS. ...
2012-01-04 Dr. Stephen HensonCheck GOST parameters are not NULL (CVE-2012-0027)
2012-01-04 Dr. Stephen HensonPrevent malformed RFC3779 data triggering an assertion...
2011-12-31 Dr. Stephen Hensonupdate CHANGES
2011-12-31 Dr. Stephen HensonPR: 2658
2011-12-19 Dr. Stephen HensonPR: 2563
2011-12-19 Andy Polyakovupdate CHANGES.
2011-12-19 Dr. Stephen Hensonupdate CHANGES
2011-12-10 Dr. Stephen Hensonremove old -attime code, new version includes all old...
2011-12-02 Bodo MöllerResolve a stack set-up race condition (if the list...
2011-12-02 Bodo MöllerFix ecdsatest.c.
2011-12-02 Bodo MöllerFix BIO_f_buffer().
2011-11-15 Ben LaurieAdd TLS exporter.
2011-11-15 Ben LaurieAdd DTLS-SRTP.
2011-11-14 Ben LaurieNext Protocol Negotiation.
2011-10-19 Bodo MöllerBN_BLINDING multi-threading fix.
2011-10-19 Bodo MöllerFix warnings.
2011-10-18 Bodo MöllerImprove optional 64-bit NIST-P224 implementation, and...
2011-10-13 Bodo MöllerIn ssl3_clear, preserve s3->init_extra along with s3...
2011-10-10 Dr. Stephen HensonBackport ossl_ssize_t type from HEAD.
2011-10-09 Dr. Stephen HensonBackport PSS signature support from HEAD.
2011-10-09 Dr. Stephen Hensonfix CHANGES entry
2011-10-09 Dr. Stephen HensonBackport of password based CMS support from HEAD.
2011-09-06 Dr. Stephen HensonInitialise X509_STORE_CTX properly so CRLs with nextUpd...
2011-09-05 Bodo MöllerFix session handling.
2011-09-05 Bodo MöllerFix d2i_SSL_SESSION.
2011-09-05 Bodo Möller(EC)DH memory handling fixes.
2011-09-05 Bodo MöllerFix memory leak on bad inputs.
2011-08-23 Andy PolyakovAdd RC4-MD5 and AESNI-SHA1 "stitched" implementations...
2011-08-14 Dr. Stephen HensonRemove hard coded ecdsaWithSHA1 hack in ssl routines...
2011-08-04 Dr. Stephen HensonBackport GCM support from HEAD.
2011-07-25 Dr. Stephen HensonAdd HMAC ECC ciphersuites from RFC5289. Include SHA384...
2011-06-20 Dr. Stephen HensonDon't set default public key methods in FIPS mode so...
2011-06-15 Bodo MöllerFix the version history: given that 1.0.1 has yet to...
2011-06-12 Dr. Stephen HensonRedirect HMAC and CMAC operations to module.
2011-06-09 Ben LaurieAdd -attime.
2011-06-09 Dr. Stephen HensonRedirect DSA operations to FIPS module in FIPS mode.
2011-06-06 Dr. Stephen HensonRedirection of ECDSA, ECDH operations to FIPS module.
2011-06-06 Dr. Stephen HensonBackport from HEAD:
2011-06-03 Dr. Stephen HensonBackport libcrypto audit: check return values of EVP...
2011-06-03 Dr. Stephen HensonRedirect RSA keygen, sign, verify to FIPS module.
2011-06-02 Dr. Stephen HensonRedirection of low level APIs to FIPS module.
2011-06-01 Dr. Stephen HensonProhibit low level cipher APIs in FIPS mode.
2011-06-01 Dr. Stephen HensonProhibit use of low level digest APIs in FIPS mode.
2011-05-30 Dr. Stephen HensonOutput supported curves in preference order instead...