diff options
author | Kyungwook Tak <k.tak@samsung.com> | 2015-08-31 16:19:30 +0900 |
---|---|---|
committer | Kyungwook Tak <k.tak@samsung.com> | 2015-08-31 16:21:32 +0900 |
commit | ca2b56e2594c5e549d1c5c2e0ea625770f59bb75 (patch) | |
tree | 7712fcee7b020d7ebc0820aac202f8af2de6a924 /NEWS | |
parent | a23523f545972af9d67393bb41a17e1564e36cd4 (diff) | |
parent | 13ea66c69fd44fadc3e1493311a74537b8cb5d7c (diff) | |
download | openssl-ca2b56e2594c5e549d1c5c2e0ea625770f59bb75.tar.gz openssl-ca2b56e2594c5e549d1c5c2e0ea625770f59bb75.tar.bz2 openssl-ca2b56e2594c5e549d1c5c2e0ea625770f59bb75.zip |
Upgrade openssl version to 1.0.1ptizen_3.0.m2.a1_tv_releasetizen_3.0.m2.a1_mobile_releasetizen_3.0.m1_tv_releasetizen_3.0.m1_mobile_releasesubmit/tizen_common/20151026.085049submit/tizen_common/20151023.083358submit/tizen_common/20151019.135620submit/tizen_common/20151015.190624submit/tizen/20150831.092033submit/tizen/20150831.090327accepted/tizen/wearable/20150901.083422accepted/tizen/tv/20150901.083409accepted/tizen/mobile/20150901.083356tizen_3.0.m1_tvtizen_3.0.m1_mobile
Change-Id: I4adbd2d17c72f228aea1396678f1e11a67b63bdc
Diffstat (limited to 'NEWS')
-rw-r--r-- | NEWS | 16 |
1 files changed, 16 insertions, 0 deletions
@@ -5,6 +5,22 @@ This file gives a brief overview of the major changes between each OpenSSL release. For more details please read the CHANGES file. + Major changes between OpenSSL 1.0.1o and OpenSSL 1.0.1p [9 Jul 2015] + + o Alternate chains certificate forgery (CVE-2015-1793) + + Major changes between OpenSSL 1.0.1n and OpenSSL 1.0.1o [12 Jun 2015] + + o Fix HMAC ABI incompatibility + + Major changes between OpenSSL 1.0.1m and OpenSSL 1.0.1n [11 Jun 2015] + + o Malformed ECParameters causes infinite loop (CVE-2015-1788) + o Exploitable out-of-bounds read in X509_cmp_time (CVE-2015-1789) + o PKCS7 crash with missing EnvelopedContent (CVE-2015-1790) + o CMS verify infinite loop with unknown hash function (CVE-2015-1792) + o Race condition handling NewSessionTicket (CVE-2015-1791) + Major changes between OpenSSL 1.0.1l and OpenSSL 1.0.1m [19 Mar 2015] o Segmentation fault in ASN1_TYPE_cmp fix (CVE-2015-0286) |