This commit was generated by cvs2svn to compensate for changes in r101613,

which included commits to RCS files with non-trunk default branches.
author: nectar <nectar@FreeBSD.org> 2002-08-10 01:40:00 +0000
committer: nectar <nectar@FreeBSD.org> 2002-08-10 01:40:00 +0000
commit: 15e4ff204e84fcadca0f0e635f95a144a1dd113a (patch)
tree: d4bb8728fa428b208873f1cd4ea592cc63030534 /crypto/openssl/CHANGES
parent: 29e0235abad01daf0522a8a4aa512149de4f06f2 (diff)
parent: c48e8e3d25b5b1f6a1783f1e469b5aff8e6c8e29 (diff)
download: FreeBSD-src-15e4ff204e84fcadca0f0e635f95a144a1dd113a.zip
FreeBSD-src-15e4ff204e84fcadca0f0e635f95a144a1dd113a.tar.gz
1 files changed, 13 insertions, 0 deletions
diff --git a/crypto/openssl/CHANGES b/crypto/openssl/CHANGES
index be4d128..dc066c0 100644
--- a/crypto/openssl/CHANGES
+++ b/crypto/openssl/CHANGES
@@ -2,6 +2,19 @@
  OpenSSL CHANGES
  _______________
 
+ Changes between 0.9.6e and 0.9.6f  [8 Aug 2002]
+
+  *) Fix ASN1 checks. Check for overflow by comparing with LONG_MAX
+     and get fix the header length calculation.
+     [Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>,
+	Alon Kantor <alonk@checkpoint.com> (and others),
+	Steve Henson]
+
+  *) Use proper error handling instead of 'assertions' in buffer
+     overflow checks added in 0.9.6e.  This prevents DoS (the
+     assertions could call abort()).
+     [Arne Ansper <arne@ats.cyber.ee>, Bodo Moeller]
+
  Changes between 0.9.6d and 0.9.6e  [30 Jul 2002]
 
   *) Fix cipher selection routines: ciphers without encryption had no flags
author	nectar <nectar@FreeBSD.org>	2002-08-10 01:40:00 +0000
committer	nectar <nectar@FreeBSD.org>	2002-08-10 01:40:00 +0000
commit	15e4ff204e84fcadca0f0e635f95a144a1dd113a (patch)
tree	d4bb8728fa428b208873f1cd4ea592cc63030534 /crypto/openssl/CHANGES
parent	29e0235abad01daf0522a8a4aa512149de4f06f2 (diff)
parent	c48e8e3d25b5b1f6a1783f1e469b5aff8e6c8e29 (diff)
download	FreeBSD-src-15e4ff204e84fcadca0f0e635f95a144a1dd113a.zip FreeBSD-src-15e4ff204e84fcadca0f0e635f95a144a1dd113a.tar.gz