Deleted Added
sdiff udiff text old ( 68651 ) new ( 76866 )
full compact
NEWS (68651) NEWS (76866)
1
2 NEWS
3 ====
4
5 This file gives a brief overview of the major changes between each OpenSSL
6 release. For more details please read the CHANGES file.
7
1
2 NEWS
3 ====
4
5 This file gives a brief overview of the major changes between each OpenSSL
6 release. For more details please read the CHANGES file.
7
8 Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.6a:
9
10 o Security fix: change behavior of OpenSSL to avoid using
11 environment variables when running as root.
12 o Security fix: check the result of RSA-CRT to reduce the
13 possibility of deducing the private key from an incorrectly
14 calculated signature.
15 o Security fix: prevent Bleichenbacher's DSA attack.
16 o Security fix: Zero the premaster secret after deriving the
17 master secret in DH ciphersuites.
18 o Reimplement SSL_peek(), which had various problems.
19 o Compatibility fix: the function des_encrypt() renamed to
20 des_encrypt1() to avoid clashes with some Unixen libc.
21 o Bug fixes for Win32, HP/UX and Irix.
22 o Bug fixes in BIGNUM, SSL, PKCS#7, PKCS#12, X.509, CONF and
23 memory checking routines.
24 o Bug fixes for RSA operations in threaded enviroments.
25 o Bug fixes in misc. openssl applications.
26 o Remove a few potential memory leaks.
27 o Add tighter checks of BIGNUM routines.
28 o Shared library support has been reworked for generality.
29 o More documentation.
30 o New function BN_rand_range().
31 o Add "-rand" option to openssl s_client and s_server.
32
8 Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6:
9
10 o Some documentation for BIO and SSL libraries.
11 o Enhanced chain verification using key identifiers.
12 o New sign and verify options to 'dgst' application.
13 o Support for DER and PEM encoded messages in 'smime' application.
14 o New 'rsautl' application, low level RSA utility.
15 o MD4 now included.

--- 110 unchanged lines hidden --- 		33 Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6:
34
35 o Some documentation for BIO and SSL libraries.
36 o Enhanced chain verification using key identifiers.
37 o New sign and verify options to 'dgst' application.
38 o Support for DER and PEM encoded messages in 'smime' application.
39 o New 'rsautl' application, low level RSA utility.
40 o MD4 now included.

--- 110 unchanged lines hidden ---