Merge remote-tracking branch 'origin/released'

Conflicts: openssl/Configure openssl/Makefile openssl/util/pl/VC-32.pl
author: marha <marha@users.sourceforge.net> 2014-04-14 23:45:39 +0200
committer: marha <marha@users.sourceforge.net> 2014-04-14 23:45:39 +0200
commit: 7c21629fbeb51b65fd0625bb36d888587d62fd89 (patch)
tree: 425433df36d64f529d2222de2d1680e0b0abca3f /openssl/NEWS
parent: 0bd141efd4832e01c8b269b8566dd5749e30ed55 (diff)
parent: 242d48135a12fc9167430f391ba0d27d9ad44c6b (diff)
download: vcxsrv-7c21629fbeb51b65fd0625bb36d888587d62fd89.tar.gz
vcxsrv-7c21629fbeb51b65fd0625bb36d888587d62fd89.tar.bz2
vcxsrv-7c21629fbeb51b65fd0625bb36d888587d62fd89.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/openssl/NEWS b/openssl/NEWS
index 909fea96c..ed486d146 100644
--- a/openssl/NEWS
+++ b/openssl/NEWS
@@ -5,8 +5,15 @@
   This file gives a brief overview of the major changes between each OpenSSL
   release. For more details please read the CHANGES file.
 
+  Major changes between OpenSSL 1.0.1f and OpenSSL 1.0.1g [7 Apr 2014]
+
+      o Fix for CVE-2014-0160
+      o Add TLS padding extension workaround for broken servers.
+      o Fix for CVE-2014-0076
+
   Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014]
 
+      o Don't include gmt_unix_time in TLS server and client random values
       o Fix for TLS record tampering bug CVE-2013-4353
       o Fix for TLS version checking bug CVE-2013-6449
       o Fix for DTLS retransmission bug CVE-2013-6450
author	marha <marha@users.sourceforge.net>	2014-04-14 23:45:39 +0200
committer	marha <marha@users.sourceforge.net>	2014-04-14 23:45:39 +0200
commit	7c21629fbeb51b65fd0625bb36d888587d62fd89 (patch)
tree	425433df36d64f529d2222de2d1680e0b0abca3f /openssl/NEWS
parent	0bd141efd4832e01c8b269b8566dd5749e30ed55 (diff)
parent	242d48135a12fc9167430f391ba0d27d9ad44c6b (diff)
download	vcxsrv-7c21629fbeb51b65fd0625bb36d888587d62fd89.tar.gz vcxsrv-7c21629fbeb51b65fd0625bb36d888587d62fd89.tar.bz2 vcxsrv-7c21629fbeb51b65fd0625bb36d888587d62fd89.zip