Updated openssl to version 1.0.1g

author: marha <marha@users.sourceforge.net> 2014-04-14 23:15:59 +0200
committer: marha <marha@users.sourceforge.net> 2014-04-14 23:15:59 +0200
commit: 242d48135a12fc9167430f391ba0d27d9ad44c6b (patch)
tree: 95c65b0c4b195842adfd8dcf4c10c8f46b24e044 /openssl/NEWS
parent: d2ad10d03be8e6d4b150bbdf2a28ea3d5a18a2ed (diff)
download: vcxsrv-242d48135a12fc9167430f391ba0d27d9ad44c6b.tar.gz
vcxsrv-242d48135a12fc9167430f391ba0d27d9ad44c6b.tar.bz2
vcxsrv-242d48135a12fc9167430f391ba0d27d9ad44c6b.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/openssl/NEWS b/openssl/NEWS
index 909fea96c..ed486d146 100644
--- a/openssl/NEWS
+++ b/openssl/NEWS
@@ -5,8 +5,15 @@
   This file gives a brief overview of the major changes between each OpenSSL
   release. For more details please read the CHANGES file.
 
+  Major changes between OpenSSL 1.0.1f and OpenSSL 1.0.1g [7 Apr 2014]
+
+      o Fix for CVE-2014-0160
+      o Add TLS padding extension workaround for broken servers.
+      o Fix for CVE-2014-0076
+
   Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014]
 
+      o Don't include gmt_unix_time in TLS server and client random values
       o Fix for TLS record tampering bug CVE-2013-4353
       o Fix for TLS version checking bug CVE-2013-6449
       o Fix for DTLS retransmission bug CVE-2013-6450
author	marha <marha@users.sourceforge.net>	2014-04-14 23:15:59 +0200
committer	marha <marha@users.sourceforge.net>	2014-04-14 23:15:59 +0200
commit	242d48135a12fc9167430f391ba0d27d9ad44c6b (patch)
tree	95c65b0c4b195842adfd8dcf4c10c8f46b24e044 /openssl/NEWS
parent	d2ad10d03be8e6d4b150bbdf2a28ea3d5a18a2ed (diff)
download	vcxsrv-242d48135a12fc9167430f391ba0d27d9ad44c6b.tar.gz vcxsrv-242d48135a12fc9167430f391ba0d27d9ad44c6b.tar.bz2 vcxsrv-242d48135a12fc9167430f391ba0d27d9ad44c6b.zip