| NEWS (160814) | NEWS (162911) |
|---|---|
| 1 2 NEWS 3 ==== 4 5 This file gives a brief overview of the major changes between each OpenSSL 6 release. For more details please read the CHANGES file. 7 | 1 2 NEWS 3 ==== 4 5 This file gives a brief overview of the major changes between each OpenSSL 6 release. For more details please read the CHANGES file. 7 |
| 8 Major changes between OpenSSL 0.9.7c and OpenSSL 0.9.8d: 9 10 o Introduce limits to prevent malicious key DoS (CVE-2006-2940) 11 o Fix security issues (CVE-2006-2937, CVE-2006-3737, CVE-2006-4343) 12 o Changes to ciphersuite selection algorithm 13 14 Major changes between OpenSSL 0.9.8b and OpenSSL 0.9.8c: 15 16 o Fix Daniel Bleichenbacher forged signature attack, CVE-2006-4339 17 o New cipher Camellia 18 |
|
| 8 Major changes between OpenSSL 0.9.8a and OpenSSL 0.9.8b: 9 10 o Cipher string fixes. 11 o Fixes for VC++ 2005. 12 o Updated ECC cipher suite support. 13 o New functions EVP_CIPHER_CTX_new() and EVP_CIPHER_CTX_free(). 14 o Zlib compression usage fixes. 15 o Built in dynamic engine compilation support on Win32. 16 o Fixes auto dynamic engine loading in Win32. 17 18 Major changes between OpenSSL 0.9.8 and OpenSSL 0.9.8a: 19 | 19 Major changes between OpenSSL 0.9.8a and OpenSSL 0.9.8b: 20 21 o Cipher string fixes. 22 o Fixes for VC++ 2005. 23 o Updated ECC cipher suite support. 24 o New functions EVP_CIPHER_CTX_new() and EVP_CIPHER_CTX_free(). 25 o Zlib compression usage fixes. 26 o Built in dynamic engine compilation support on Win32. 27 o Fixes auto dynamic engine loading in Win32. 28 29 Major changes between OpenSSL 0.9.8 and OpenSSL 0.9.8a: 30 |
| 20 o Fix potential SSL 2.0 rollback, CAN-2005-2969 | 31 o Fix potential SSL 2.0 rollback, CVE-2005-2969 |
| 21 o Extended Windows CE support 22 23 Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.8: 24 25 o Major work on the BIGNUM library for higher efficiency and to 26 make operations more streamlined and less contradictory. This 27 is the result of a major audit of the BIGNUM library. 28 o Addition of BIGNUM functions for fields GF(2^m) and NIST --- 60 unchanged lines hidden (view full) --- 89 o New BIGNUM blinding. 90 o Added support for the RSA-PSS encryption scheme 91 o Added support for the RSA X.931 padding. 92 o Added support for BSD sockets on NetWare. 93 o Added support for files larger than 2GB. 94 o Added initial support for Win64. 95 o Added alternate pkg-config files. 96 | 32 o Extended Windows CE support 33 34 Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.8: 35 36 o Major work on the BIGNUM library for higher efficiency and to 37 make operations more streamlined and less contradictory. This 38 is the result of a major audit of the BIGNUM library. 39 o Addition of BIGNUM functions for fields GF(2^m) and NIST --- 60 unchanged lines hidden (view full) --- 100 o New BIGNUM blinding. 101 o Added support for the RSA-PSS encryption scheme 102 o Added support for the RSA X.931 padding. 103 o Added support for BSD sockets on NetWare. 104 o Added support for files larger than 2GB. 105 o Added initial support for Win64. 106 o Added alternate pkg-config files. 107 |
| 108 Major changes between OpenSSL 0.9.7j and OpenSSL 0.9.7k: 109 110 o Fix Daniel Bleichenbacher forged signature attack, CVE-2006-4339 111 |
|
| 97 Major changes between OpenSSL 0.9.7i and OpenSSL 0.9.7j: 98 99 o Visual C++ 2005 fixes. 100 o Update Windows build system for FIPS. 101 102 Major changes between OpenSSL 0.9.7h and OpenSSL 0.9.7i: 103 104 o Give EVP_MAX_MD_SIZE it's old value, except for a FIPS build. 105 106 Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.7h: 107 | 112 Major changes between OpenSSL 0.9.7i and OpenSSL 0.9.7j: 113 114 o Visual C++ 2005 fixes. 115 o Update Windows build system for FIPS. 116 117 Major changes between OpenSSL 0.9.7h and OpenSSL 0.9.7i: 118 119 o Give EVP_MAX_MD_SIZE it's old value, except for a FIPS build. 120 121 Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.7h: 122 |
| 108 o Fix SSL 2.0 Rollback, CAN-2005-2969 | 123 o Fix SSL 2.0 Rollback, CVE-2005-2969 |
| 109 o Allow use of fixed-length exponent on DSA signing 110 o Default fixed-window RSA, DSA, DH private-key operations 111 112 Major changes between OpenSSL 0.9.7f and OpenSSL 0.9.7g: 113 114 o More compilation issues fixed. 115 o Adaptation to more modern Kerberos API. 116 o Enhanced or corrected configuration for Solaris64, Mingw and Cygwin. --- 321 unchanged lines hidden --- | 124 o Allow use of fixed-length exponent on DSA signing 125 o Default fixed-window RSA, DSA, DH private-key operations 126 127 Major changes between OpenSSL 0.9.7f and OpenSSL 0.9.7g: 128 129 o More compilation issues fixed. 130 o Adaptation to more modern Kerberos API. 131 o Enhanced or corrected configuration for Solaris64, Mingw and Cygwin. --- 321 unchanged lines hidden --- |