Updates CHANGES and NEWS for new release (867a9170) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

CHANGES

+12 −1

Original line number	Diff line number	Diff line
		@@ -2,7 +2,7 @@
		OpenSSL CHANGES
		_______________

		Changes between 1.1.0e and 1.1.1 [xx XXX xxxx]
		Changes between 1.1.0f and 1.1.1 [xx XXX xxxx]

		*) Fragmented SSL/TLS alerts are no longer accepted. An alert message is 2
		bytes long. In theory it is permissible in SSLv3 - TLSv1.2 to fragment such
		@@ -89,6 +89,17 @@
		issues, has been replaced to always returns NULL.
		[Rich Salz]

		Changes between 1.1.0e and 1.1.0f [25 May 2017]

		*) Have 'config' recognise 64-bit mingw and choose 'mingw64' as the target
		platform rather than 'mingw'.
		[Richard Levitte]

		*) Remove the VMS-specific reimplementation of gmtime from crypto/o_times.c.
		VMS C's RTL has a fully up to date gmtime() and gmtime_r() since V7.1,
		which is the minimum version we support.
		[Richard Levitte]

		Changes between 1.1.0d and 1.1.0e [16 Feb 2017]

		*) Encrypt-Then-Mac renegotiation crash

+5 −1

Original line number	Diff line number	Diff line
		@@ -5,10 +5,14 @@
		This file gives a brief overview of the major changes between each OpenSSL
		release. For more details please read the CHANGES file.

		Major changes between OpenSSL 1.1.0e and OpenSSL 1.1.1 [under development]
		Major changes between OpenSSL 1.1.0f and OpenSSL 1.1.1 [under development]

		o

		Major changes between OpenSSL 1.1.0e and OpenSSL 1.1.0f [25 May 2017]

		o config now recognises 64-bit mingw and chooses mingw64 instead of mingw

		Major changes between OpenSSL 1.1.0d and OpenSSL 1.1.0e [16 Feb 2017]

		o Encrypt-Then-Mac renegotiation crash (CVE-2017-3733)