|
@@ -15,6 +15,10 @@
|
|
|
in a different context.
|
|
|
[Bodo Moeller]
|
|
|
|
|
|
+ *) Update the SSL_get_shared_ciphers() fix CVE-2006-3738 which was
|
|
|
+ not complete and could lead to a possible single byte overflow
|
|
|
+ (CVE-2007-5135) [Ben Laurie]
|
|
|
+
|
|
|
Changes between 0.9.7l and 0.9.7m [23 Feb 2007]
|
|
|
|
|
|
*) Cleanse PEM buffers before freeing them since they may contain
|