Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(227)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: openssl/NEWS

Issue 9254031: Upgrade chrome's OpenSSL to same version Android ships with. (Closed) Base URL: http://src.chromium.org/svn/trunk/deps/third_party/openssl/
Patch Set: '' Created 8 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « openssl/Makefile.shared ('k') | openssl/Netware/build.bat » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 1
2 NEWS 2 NEWS
3 ==== 3 ====
4 4
5 This file gives a brief overview of the major changes between each OpenSSL 5 This file gives a brief overview of the major changes between each OpenSSL
6 release. For more details please read the CHANGES file. 6 release. For more details please read the CHANGES file.
7 7
8 Major changes between OpenSSL 1.0.0e and OpenSSL 1.0.0f:
9
10 o Fix for DTLS plaintext recovery attack CVE-2011-4108
11 o Clear block padding bytes of SSL 3.0 records CVE-2011-4576
12 o Only allow one SGC handshake restart for SSL/TLS CVE-2011-4619
13 o Check parameters are not NULL in GOST ENGINE CVE-2012-0027
14 o Check for malformed RFC3779 data CVE-2011-4577
15
16 Major changes between OpenSSL 1.0.0d and OpenSSL 1.0.0e:
17
18 o Fix for CRL vulnerability issue CVE-2011-3207
19 o Fix for ECDH crashes CVE-2011-3210
20 o Protection against EC timing attacks.
21 o Support ECDH ciphersuites for certificates using SHA2 algorithms.
22 o Various DTLS fixes.
23
24 Major changes between OpenSSL 1.0.0c and OpenSSL 1.0.0d:
25
26 o Fix for security issue CVE-2011-0014
27
28 Major changes between OpenSSL 1.0.0b and OpenSSL 1.0.0c:
29
30 o Fix for security issue CVE-2010-4180
31 o Fix for CVE-2010-4252
32 o Fix mishandling of absent EC point format extension.
33 o Fix various platform compilation issues.
34 o Corrected fix for security issue CVE-2010-3864.
35
36 Major changes between OpenSSL 1.0.0a and OpenSSL 1.0.0b:
37
38 o Fix for security issue CVE-2010-3864.
39 o Fix for CVE-2010-2939
40 o Fix WIN32 build system for GOST ENGINE.
41
42 Major changes between OpenSSL 1.0.0 and OpenSSL 1.0.0a:
43
44 o Fix for security issue CVE-2010-1633.
45 o GOST MAC and CFB fixes.
46
47 Major changes between OpenSSL 0.9.8n and OpenSSL 1.0.0:
48
49 o RFC3280 path validation: sufficient to process PKITS tests.
50 o Integrated support for PVK files and keyblobs.
51 o Change default private key format to PKCS#8.
52 o CMS support: able to process all examples in RFC4134
53 o Streaming ASN1 encode support for PKCS#7 and CMS.
54 o Multiple signer and signer add support for PKCS#7 and CMS.
55 o ASN1 printing support.
56 o Whirlpool hash algorithm added.
57 o RFC3161 time stamp support.
58 o New generalised public key API supporting ENGINE based algorithms.
59 o New generalised public key API utilities.
60 o New ENGINE supporting GOST algorithms.
61 o SSL/TLS GOST ciphersuite support.
62 o PKCS#7 and CMS GOST support.
63 o RFC4279 PSK ciphersuite support.
64 o Supported points format extension for ECC ciphersuites.
65 o ecdsa-with-SHA224/256/384/512 signature types.
66 o dsa-with-SHA224 and dsa-with-SHA256 signature types.
67 o Opaque PRF Input TLS extension support.
68 o Updated time routines to avoid OS limitations.
69
70 Major changes between OpenSSL 0.9.8q and OpenSSL 0.9.8r:
71
72 o Fix for security issue CVE-2011-0014
73
74 Major changes between OpenSSL 0.9.8p and OpenSSL 0.9.8q:
75
76 o Fix for security issue CVE-2010-4180
77 o Fix for CVE-2010-4252
78
79 Major changes between OpenSSL 0.9.8o and OpenSSL 0.9.8p:
80
81 o Fix for security issue CVE-2010-3864.
82
8 Major changes between OpenSSL 0.9.8n and OpenSSL 0.9.8o: 83 Major changes between OpenSSL 0.9.8n and OpenSSL 0.9.8o:
9 84
10 o Fix for security issue CVE-2010-0742. 85 o Fix for security issue CVE-2010-0742.
11 o Various DTLS fixes. 86 o Various DTLS fixes.
12 o Recognise SHA2 certificates if only SSL algorithms added. 87 o Recognise SHA2 certificates if only SSL algorithms added.
13 o Fix for no-rc4 compilation. 88 o Fix for no-rc4 compilation.
14 o Chil ENGINE unload workaround. 89 o Chil ENGINE unload workaround.
15 90
16 Major changes between OpenSSL 0.9.8m and OpenSSL 0.9.8n: 91 Major changes between OpenSSL 0.9.8m and OpenSSL 0.9.8n:
17 92
(...skipping 147 matching lines...) Expand 10 before | Expand all | Expand 10 after
165 SHA-1. 240 SHA-1.
166 o Added support for DTLS. 241 o Added support for DTLS.
167 o New BIGNUM blinding. 242 o New BIGNUM blinding.
168 o Added support for the RSA-PSS encryption scheme 243 o Added support for the RSA-PSS encryption scheme
169 o Added support for the RSA X.931 padding. 244 o Added support for the RSA X.931 padding.
170 o Added support for BSD sockets on NetWare. 245 o Added support for BSD sockets on NetWare.
171 o Added support for files larger than 2GB. 246 o Added support for files larger than 2GB.
172 o Added initial support for Win64. 247 o Added initial support for Win64.
173 o Added alternate pkg-config files. 248 o Added alternate pkg-config files.
174 249
250 Major changes between OpenSSL 0.9.7l and OpenSSL 0.9.7m:
251
252 o FIPS 1.1.1 module linking.
253 o Various ciphersuite selection fixes.
254
175 Major changes between OpenSSL 0.9.7k and OpenSSL 0.9.7l: 255 Major changes between OpenSSL 0.9.7k and OpenSSL 0.9.7l:
176 256
177 o Introduce limits to prevent malicious key DoS (CVE-2006-2940) 257 o Introduce limits to prevent malicious key DoS (CVE-2006-2940)
178 o Fix security issues (CVE-2006-2937, CVE-2006-3737, CVE-2006-4343) 258 o Fix security issues (CVE-2006-2937, CVE-2006-3737, CVE-2006-4343)
179 259
180 Major changes between OpenSSL 0.9.7j and OpenSSL 0.9.7k: 260 Major changes between OpenSSL 0.9.7j and OpenSSL 0.9.7k:
181 261
182 o Fix Daniel Bleichenbacher forged signature attack, CVE-2006-4339 262 o Fix Daniel Bleichenbacher forged signature attack, CVE-2006-4339
183 263
184 Major changes between OpenSSL 0.9.7i and OpenSSL 0.9.7j: 264 Major changes between OpenSSL 0.9.7i and OpenSSL 0.9.7j:
(...skipping 330 matching lines...) Expand 10 before | Expand all | Expand 10 after
515 o Integration of the popular NO_RSA/NO_DSA patches 595 o Integration of the popular NO_RSA/NO_DSA patches
516 o Initial support for compression inside the SSL record layer 596 o Initial support for compression inside the SSL record layer
517 o Added BIO proxy and filtering functionality 597 o Added BIO proxy and filtering functionality
518 o Extended Big Number (BN) library 598 o Extended Big Number (BN) library
519 o Added RIPE MD160 message digest 599 o Added RIPE MD160 message digest
520 o Addeed support for RC2/64bit cipher 600 o Addeed support for RC2/64bit cipher
521 o Extended ASN.1 parser routines 601 o Extended ASN.1 parser routines
522 o Adjustations of the source tree for CVS 602 o Adjustations of the source tree for CVS
523 o Support for various new platforms 603 o Support for various new platforms
524 604
OLDNEW
« no previous file with comments | « openssl/Makefile.shared ('k') | openssl/Netware/build.bat » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698