Add missing changelog entry for http://cvs.openssl.org/chngview?cn=16587

2008-02-28 13:35:58 +00:00 · 2008-02-28 13:35:58 +00:00 · 216ac24bd3
commit 216ac24bd3
parent 2035af2091
1 changed files with 4 additions and 0 deletions
--- a/4
+++ b/4
@ -199,6 +199,10 @@
     authentication-only ciphersuites.
     [Bodo Moeller]

+  *) Update the SSL_get_shared_ciphers() fix CVE-2006-3738 which was
+     not complete and could lead to a possible single byte overflow
+     (CVE-2007-5135) [Ben Laurie]
+
 Changes between 0.9.8d and 0.9.8e  [23 Feb 2007]

  *) Since AES128 and AES256 (and similarly Camellia128 and