Loading CHANGES +9 −1 Original line number Diff line number Diff line Loading @@ -4,7 +4,15 @@ Changes between 1.0.2i and 1.0.2j [xx XXX xxxx] *) *) Missing CRL sanity check A bug fix which included a CRL sanity check was added to OpenSSL 1.1.0 but was omitted from OpenSSL 1.0.2i. As a result any attempt to use CRLs in OpenSSL 1.0.2i will crash with a null pointer exception. This issue only affects the OpenSSL 1.0.2i (CVE-2016-7052) [Matt Caswell] Changes between 1.0.2h and 1.0.2i [22 Sep 2016] Loading NEWS +1 −1 Original line number Diff line number Diff line Loading @@ -7,7 +7,7 @@ Major changes between OpenSSL 1.0.2i and OpenSSL 1.0.2j [under development] o o Fix Use After Free for large message sizes (CVE-2016-6309) Major changes between OpenSSL 1.0.2h and OpenSSL 1.0.2i [22 Sep 2016] Loading Loading
CHANGES +9 −1 Original line number Diff line number Diff line Loading @@ -4,7 +4,15 @@ Changes between 1.0.2i and 1.0.2j [xx XXX xxxx] *) *) Missing CRL sanity check A bug fix which included a CRL sanity check was added to OpenSSL 1.1.0 but was omitted from OpenSSL 1.0.2i. As a result any attempt to use CRLs in OpenSSL 1.0.2i will crash with a null pointer exception. This issue only affects the OpenSSL 1.0.2i (CVE-2016-7052) [Matt Caswell] Changes between 1.0.2h and 1.0.2i [22 Sep 2016] Loading
NEWS +1 −1 Original line number Diff line number Diff line Loading @@ -7,7 +7,7 @@ Major changes between OpenSSL 1.0.2i and OpenSSL 1.0.2j [under development] o o Fix Use After Free for large message sizes (CVE-2016-6309) Major changes between OpenSSL 1.0.2h and OpenSSL 1.0.2i [22 Sep 2016] Loading
Richard Levitte <levitte@openssl.org>Richard Levitte <levitte@openssl.org>