1 | NEWS
|
---|
2 | ====
|
---|
3 |
|
---|
4 | This file gives a brief overview of the major changes between each OpenSSL
|
---|
5 | release. For more details please read the CHANGES file.
|
---|
6 |
|
---|
7 | OpenSSL Releases
|
---|
8 | ----------------
|
---|
9 |
|
---|
10 | - [OpenSSL 3.0](#openssl-30)
|
---|
11 | - [OpenSSL 1.1.1](#openssl-111)
|
---|
12 | - [OpenSSL 1.1.0](#openssl-110)
|
---|
13 | - [OpenSSL 1.0.2](#openssl-102)
|
---|
14 | - [OpenSSL 1.0.1](#openssl-101)
|
---|
15 | - [OpenSSL 1.0.0](#openssl-100)
|
---|
16 | - [OpenSSL 0.9.x](#openssl-09x)
|
---|
17 |
|
---|
18 | OpenSSL 3.0
|
---|
19 | -----------
|
---|
20 |
|
---|
21 | ### Major changes between OpenSSL 3.0.8 and OpenSSL 3.0.9 [30 May 2023]
|
---|
22 |
|
---|
23 | * Mitigate for very slow `OBJ_obj2txt()` performance with gigantic OBJECT
|
---|
24 | IDENTIFIER sub-identities. ([CVE-2023-2650])
|
---|
25 | * Fixed buffer overread in AES-XTS decryption on ARM 64 bit platforms
|
---|
26 | ([CVE-2023-1255])
|
---|
27 | * Fixed documentation of X509_VERIFY_PARAM_add0_policy() ([CVE-2023-0466])
|
---|
28 | * Fixed handling of invalid certificate policies in leaf certificates
|
---|
29 | ([CVE-2023-0465])
|
---|
30 | * Limited the number of nodes created in a policy tree ([CVE-2023-0464])
|
---|
31 |
|
---|
32 | ### Major changes between OpenSSL 3.0.7 and OpenSSL 3.0.8 [7 Feb 2023]
|
---|
33 |
|
---|
34 | * Fixed NULL dereference during PKCS7 data verification ([CVE-2023-0401])
|
---|
35 | * Fixed X.400 address type confusion in X.509 GeneralName ([CVE-2023-0286])
|
---|
36 | * Fixed NULL dereference validating DSA public key ([CVE-2023-0217])
|
---|
37 | * Fixed Invalid pointer dereference in d2i_PKCS7 functions ([CVE-2023-0216])
|
---|
38 | * Fixed Use-after-free following BIO_new_NDEF ([CVE-2023-0215])
|
---|
39 | * Fixed Double free after calling PEM_read_bio_ex ([CVE-2022-4450])
|
---|
40 | * Fixed Timing Oracle in RSA Decryption ([CVE-2022-4304])
|
---|
41 | * Fixed X.509 Name Constraints Read Buffer Overflow ([CVE-2022-4203])
|
---|
42 | * Fixed X.509 Policy Constraints Double Locking ([CVE-2022-3996])
|
---|
43 |
|
---|
44 | ### Major changes between OpenSSL 3.0.6 and OpenSSL 3.0.7 [1 Nov 2022]
|
---|
45 |
|
---|
46 | * Added RIPEMD160 to the default provider.
|
---|
47 | * Fixed regressions introduced in 3.0.6 version.
|
---|
48 | * Fixed two buffer overflows in punycode decoding functions.
|
---|
49 | ([CVE-2022-3786]) and ([CVE-2022-3602])
|
---|
50 |
|
---|
51 | ### Major changes between OpenSSL 3.0.5 and OpenSSL 3.0.6 [11 Oct 2022]
|
---|
52 |
|
---|
53 | * Fix for custom ciphers to prevent accidental use of NULL encryption
|
---|
54 | ([CVE-2022-3358])
|
---|
55 |
|
---|
56 | ### Major changes between OpenSSL 3.0.4 and OpenSSL 3.0.5 [5 Jul 2022]
|
---|
57 |
|
---|
58 | * Fixed heap memory corruption with RSA private key operation
|
---|
59 | ([CVE-2022-2274])
|
---|
60 | * Fixed AES OCB failure to encrypt some bytes on 32-bit x86 platforms
|
---|
61 | ([CVE-2022-2097])
|
---|
62 |
|
---|
63 | ### Major changes between OpenSSL 3.0.3 and OpenSSL 3.0.4 [21 Jun 2022]
|
---|
64 |
|
---|
65 | * Fixed additional bugs in the c_rehash script which was not properly
|
---|
66 | sanitising shell metacharacters to prevent command injection
|
---|
67 | ([CVE-2022-2068])
|
---|
68 |
|
---|
69 | ### Major changes between OpenSSL 3.0.2 and OpenSSL 3.0.3 [3 May 2022]
|
---|
70 |
|
---|
71 | * Fixed a bug in the c_rehash script which was not properly sanitising shell
|
---|
72 | metacharacters to prevent command injection ([CVE-2022-1292])
|
---|
73 | * Fixed a bug in the function `OCSP_basic_verify` that verifies the signer
|
---|
74 | certificate on an OCSP response ([CVE-2022-1343])
|
---|
75 | * Fixed a bug where the RC4-MD5 ciphersuite incorrectly used the
|
---|
76 | AAD data as the MAC key ([CVE-2022-1434])
|
---|
77 | * Fix a bug in the OPENSSL_LH_flush() function that breaks reuse of the memory
|
---|
78 | occuppied by the removed hash table entries ([CVE-2022-1473])
|
---|
79 |
|
---|
80 | ### Major changes between OpenSSL 3.0.1 and OpenSSL 3.0.2 [15 Mar 2022]
|
---|
81 |
|
---|
82 | * Fixed a bug in the BN_mod_sqrt() function that can cause it to loop forever
|
---|
83 | for non-prime moduli ([CVE-2022-0778])
|
---|
84 |
|
---|
85 | ### Major changes between OpenSSL 3.0.0 and OpenSSL 3.0.1 [14 Dec 2021]
|
---|
86 |
|
---|
87 | * Fixed invalid handling of X509_verify_cert() internal errors in libssl
|
---|
88 | ([CVE-2021-4044])
|
---|
89 | * Allow fetching an operation from the provider that owns an unexportable key
|
---|
90 | as a fallback if that is still allowed by the property query.
|
---|
91 |
|
---|
92 | ### Major changes between OpenSSL 1.1.1 and OpenSSL 3.0.0 [7 sep 2021]
|
---|
93 |
|
---|
94 | * Enhanced 'openssl list' with many new options.
|
---|
95 | * Added migration guide to man7.
|
---|
96 | * Implemented support for fully "pluggable" TLSv1.3 groups.
|
---|
97 | * Added suport for Kernel TLS (KTLS).
|
---|
98 | * Changed the license to the Apache License v2.0.
|
---|
99 | * Moved all variations of the EVP ciphers CAST5, BF, IDEA, SEED, RC2,
|
---|
100 | RC4, RC5, and DES to the legacy provider.
|
---|
101 | * Moved the EVP digests MD2, MD4, MDC2, WHIRLPOOL and RIPEMD-160 to the legacy
|
---|
102 | provider.
|
---|
103 | * Added convenience functions for generating asymmetric key pairs.
|
---|
104 | * Deprecated the `OCSP_REQ_CTX` type and functions.
|
---|
105 | * Deprecated the `EC_KEY` and `EC_KEY_METHOD` types and functions.
|
---|
106 | * Deprecated the `RSA` and `RSA_METHOD` types and functions.
|
---|
107 | * Deprecated the `DSA` and `DSA_METHOD` types and functions.
|
---|
108 | * Deprecated the `DH` and `DH_METHOD` types and functions.
|
---|
109 | * Deprecated the `ERR_load_` functions.
|
---|
110 | * Remove the `RAND_DRBG` API.
|
---|
111 | * Deprecated the `ENGINE` API.
|
---|
112 | * Added `OSSL_LIB_CTX`, a libcrypto library context.
|
---|
113 | * Added various `_ex` functions to the OpenSSL API that support using
|
---|
114 | a non-default `OSSL_LIB_CTX`.
|
---|
115 | * Interactive mode is removed from the 'openssl' program.
|
---|
116 | * The X25519, X448, Ed25519, Ed448, SHAKE128 and SHAKE256 algorithms are
|
---|
117 | included in the FIPS provider.
|
---|
118 | * X509 certificates signed using SHA1 are no longer allowed at security
|
---|
119 | level 1 or higher. The default security level for TLS is 1, so
|
---|
120 | certificates signed using SHA1 are by default no longer trusted to
|
---|
121 | authenticate servers or clients.
|
---|
122 | * enable-crypto-mdebug and enable-crypto-mdebug-backtrace were mostly
|
---|
123 | disabled; the project uses address sanitize/leak-detect instead.
|
---|
124 | * Added a Certificate Management Protocol (CMP, RFC 4210) implementation
|
---|
125 | also covering CRMF (RFC 4211) and HTTP transfer (RFC 6712).
|
---|
126 | It is part of the crypto lib and adds a 'cmp' app with a demo configuration.
|
---|
127 | All widely used CMP features are supported for both clients and servers.
|
---|
128 | * Added a proper HTTP client supporting GET with optional redirection, POST,
|
---|
129 | arbitrary request and response content types, TLS, persistent connections,
|
---|
130 | connections via HTTP(s) proxies, connections and exchange via user-defined
|
---|
131 | BIOs (allowing implicit connections), and timeout checks.
|
---|
132 | * Added util/check-format.pl for checking adherence to the coding guidelines.
|
---|
133 | * Added OSSL_ENCODER, a generic encoder API.
|
---|
134 | * Added OSSL_DECODER, a generic decoder API.
|
---|
135 | * Added OSSL_PARAM_BLD, an easier to use API to OSSL_PARAM.
|
---|
136 | * Added error raising macros, ERR_raise() and ERR_raise_data().
|
---|
137 | * Deprecated ERR_put_error(), ERR_get_error_line(), ERR_get_error_line_data(),
|
---|
138 | ERR_peek_error_line_data(), ERR_peek_last_error_line_data() and
|
---|
139 | ERR_func_error_string().
|
---|
140 | * Added OSSL_PROVIDER_available(), to check provider availibility.
|
---|
141 | * Added 'openssl mac' that uses the EVP_MAC API.
|
---|
142 | * Added 'openssl kdf' that uses the EVP_KDF API.
|
---|
143 | * Add OPENSSL_info() and 'openssl info' to get built-in data.
|
---|
144 | * Add support for enabling instrumentation through trace and debug
|
---|
145 | output.
|
---|
146 | * Changed our version number scheme and set the next major release to
|
---|
147 | 3.0.0
|
---|
148 | * Added EVP_MAC, an EVP layer MAC API, and a generic EVP_PKEY to EVP_MAC
|
---|
149 | bridge. Supported MACs are: BLAKE2, CMAC, GMAC, HMAC, KMAC, POLY1305
|
---|
150 | and SIPHASH.
|
---|
151 | * Removed the heartbeat message in DTLS feature.
|
---|
152 | * Added EVP_KDF, an EVP layer KDF and PRF API, and a generic EVP_PKEY to
|
---|
153 | EVP_KDF bridge. Supported KDFs are: HKDF, KBKDF, KRB5 KDF, PBKDF2,
|
---|
154 | PKCS12 KDF, SCRYPT, SSH KDF, SSKDF, TLS1 PRF, X9.42 KDF and X9.63 KDF.
|
---|
155 | * All of the low-level MD2, MD4, MD5, MDC2, RIPEMD160, SHA1, SHA224,
|
---|
156 | SHA256, SHA384, SHA512 and Whirlpool digest functions have been
|
---|
157 | deprecated.
|
---|
158 | * All of the low-level AES, Blowfish, Camellia, CAST, DES, IDEA, RC2,
|
---|
159 | RC4, RC5 and SEED cipher functions have been deprecated.
|
---|
160 | * All of the low-level DH, DSA, ECDH, ECDSA and RSA public key functions
|
---|
161 | have been deprecated.
|
---|
162 | * SSL 3, TLS 1.0, TLS 1.1, and DTLS 1.0 only work at security level 0,
|
---|
163 | except when RSA key exchange without SHA1 is used.
|
---|
164 | * Added providers, a new pluggability concept that will replace the
|
---|
165 | ENGINE API and ENGINE implementations.
|
---|
166 |
|
---|
167 | OpenSSL 1.1.1
|
---|
168 | -------------
|
---|
169 |
|
---|
170 | ### Major changes between OpenSSL 1.1.1k and OpenSSL 1.1.1l [24 Aug 2021]
|
---|
171 |
|
---|
172 | * Fixed an SM2 Decryption Buffer Overflow ([CVE-2021-3711])
|
---|
173 | * Fixed various read buffer overruns processing ASN.1 strings ([CVE-2021-3712])
|
---|
174 |
|
---|
175 | ### Major changes between OpenSSL 1.1.1j and OpenSSL 1.1.1k [25 Mar 2021]
|
---|
176 |
|
---|
177 | * Fixed a problem with verifying a certificate chain when using the
|
---|
178 | X509_V_FLAG_X509_STRICT flag ([CVE-2021-3450])
|
---|
179 | * Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously
|
---|
180 | crafted renegotiation ClientHello message from a client ([CVE-2021-3449])
|
---|
181 |
|
---|
182 | ### Major changes between OpenSSL 1.1.1i and OpenSSL 1.1.1j [16 Feb 2021]
|
---|
183 |
|
---|
184 | * Fixed a NULL pointer deref in the X509_issuer_and_serial_hash()
|
---|
185 | function ([CVE-2021-23841])
|
---|
186 | * Fixed the RSA_padding_check_SSLv23() function and the RSA_SSLV23_PADDING
|
---|
187 | padding mode to correctly check for rollback attacks
|
---|
188 | * Fixed an overflow in the EVP_CipherUpdate, EVP_EncryptUpdate and
|
---|
189 | EVP_DecryptUpdate functions ([CVE-2021-23840])
|
---|
190 | * Fixed SRP_Calc_client_key so that it runs in constant time
|
---|
191 |
|
---|
192 | ### Major changes between OpenSSL 1.1.1h and OpenSSL 1.1.1i [8 Dec 2020]
|
---|
193 |
|
---|
194 | * Fixed NULL pointer deref in GENERAL_NAME_cmp ([CVE-2020-1971])
|
---|
195 |
|
---|
196 | ### Major changes between OpenSSL 1.1.1g and OpenSSL 1.1.1h [22 Sep 2020]
|
---|
197 |
|
---|
198 | * Disallow explicit curve parameters in verifications chains when
|
---|
199 | X509_V_FLAG_X509_STRICT is used
|
---|
200 | * Enable 'MinProtocol' and 'MaxProtocol' to configure both TLS and DTLS
|
---|
201 | contexts
|
---|
202 | * Oracle Developer Studio will start reporting deprecation warnings
|
---|
203 |
|
---|
204 | ### Major changes between OpenSSL 1.1.1f and OpenSSL 1.1.1g [21 Apr 2020]
|
---|
205 |
|
---|
206 | * Fixed segmentation fault in SSL_check_chain() ([CVE-2020-1967])
|
---|
207 |
|
---|
208 | ### Major changes between OpenSSL 1.1.1e and OpenSSL 1.1.1f [31 Mar 2020]
|
---|
209 |
|
---|
210 | * Revert the unexpected EOF reporting via SSL_ERROR_SSL
|
---|
211 |
|
---|
212 | ### Major changes between OpenSSL 1.1.1d and OpenSSL 1.1.1e [17 Mar 2020]
|
---|
213 |
|
---|
214 | * Fixed an overflow bug in the x64_64 Montgomery squaring procedure
|
---|
215 | used in exponentiation with 512-bit moduli ([CVE-2019-1551])
|
---|
216 |
|
---|
217 | ### Major changes between OpenSSL 1.1.1c and OpenSSL 1.1.1d [10 Sep 2019]
|
---|
218 |
|
---|
219 | * Fixed a fork protection issue ([CVE-2019-1549])
|
---|
220 | * Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
|
---|
221 | ([CVE-2019-1563])
|
---|
222 | * For built-in EC curves, ensure an EC_GROUP built from the curve name is
|
---|
223 | used even when parsing explicit parameters
|
---|
224 | * Compute ECC cofactors if not provided during EC_GROUP construction
|
---|
225 | ([CVE-2019-1547])
|
---|
226 | * Early start up entropy quality from the DEVRANDOM seed source has been
|
---|
227 | improved for older Linux systems
|
---|
228 | * Correct the extended master secret constant on EBCDIC systems
|
---|
229 | * Use Windows installation paths in the mingw builds ([CVE-2019-1552])
|
---|
230 | * Changed DH_check to accept parameters with order q and 2q subgroups
|
---|
231 | * Significantly reduce secure memory usage by the randomness pools
|
---|
232 | * Revert the DEVRANDOM_WAIT feature for Linux systems
|
---|
233 |
|
---|
234 | ### Major changes between OpenSSL 1.1.1b and OpenSSL 1.1.1c [28 May 2019]
|
---|
235 |
|
---|
236 | * Prevent over long nonces in ChaCha20-Poly1305 ([CVE-2019-1543])
|
---|
237 |
|
---|
238 | ### Major changes between OpenSSL 1.1.1a and OpenSSL 1.1.1b [26 Feb 2019]
|
---|
239 |
|
---|
240 | * Change the info callback signals for the start and end of a post-handshake
|
---|
241 | message exchange in TLSv1.3.
|
---|
242 | * Fix a bug in DTLS over SCTP. This breaks interoperability with older
|
---|
243 | versions of OpenSSL like OpenSSL 1.1.0 and OpenSSL 1.0.2.
|
---|
244 |
|
---|
245 | ### Major changes between OpenSSL 1.1.1 and OpenSSL 1.1.1a [20 Nov 2018]
|
---|
246 |
|
---|
247 | * Timing vulnerability in DSA signature generation ([CVE-2018-0734])
|
---|
248 | * Timing vulnerability in ECDSA signature generation ([CVE-2018-0735])
|
---|
249 |
|
---|
250 | ### Major changes between OpenSSL 1.1.0i and OpenSSL 1.1.1 [11 Sep 2018]
|
---|
251 |
|
---|
252 | * Support for TLSv1.3 added. The TLSv1.3 implementation includes:
|
---|
253 | * Fully compliant implementation of RFC8446 (TLSv1.3) on by default
|
---|
254 | * Early data (0-RTT)
|
---|
255 | * Post-handshake authentication and key update
|
---|
256 | * Middlebox Compatibility Mode
|
---|
257 | * TLSv1.3 PSKs
|
---|
258 | * Support for all five RFC8446 ciphersuites
|
---|
259 | * RSA-PSS signature algorithms (backported to TLSv1.2)
|
---|
260 | * Configurable session ticket support
|
---|
261 | * Stateless server support
|
---|
262 | * Rewrite of the packet construction code for "safer" packet handling
|
---|
263 | * Rewrite of the extension handling code
|
---|
264 | For further important information, see the [TLS1.3 page](
|
---|
265 | https://wiki.openssl.org/index.php/TLS1.3) in the OpenSSL Wiki.
|
---|
266 |
|
---|
267 | * Complete rewrite of the OpenSSL random number generator to introduce the
|
---|
268 | following capabilities
|
---|
269 | * The default RAND method now utilizes an AES-CTR DRBG according to
|
---|
270 | NIST standard SP 800-90Ar1.
|
---|
271 | * Support for multiple DRBG instances with seed chaining.
|
---|
272 | * There is a public and private DRBG instance.
|
---|
273 | * The DRBG instances are fork-safe.
|
---|
274 | * Keep all global DRBG instances on the secure heap if it is enabled.
|
---|
275 | * The public and private DRBG instance are per thread for lock free
|
---|
276 | operation
|
---|
277 | * Support for various new cryptographic algorithms including:
|
---|
278 | * SHA3
|
---|
279 | * SHA512/224 and SHA512/256
|
---|
280 | * EdDSA (both Ed25519 and Ed448) including X509 and TLS support
|
---|
281 | * X448 (adding to the existing X25519 support in 1.1.0)
|
---|
282 | * Multi-prime RSA
|
---|
283 | * SM2
|
---|
284 | * SM3
|
---|
285 | * SM4
|
---|
286 | * SipHash
|
---|
287 | * ARIA (including TLS support)
|
---|
288 | * Significant Side-Channel attack security improvements
|
---|
289 | * Add a new ClientHello callback to provide the ability to adjust the SSL
|
---|
290 | object at an early stage.
|
---|
291 | * Add 'Maximum Fragment Length' TLS extension negotiation and support
|
---|
292 | * A new STORE module, which implements a uniform and URI based reader of
|
---|
293 | stores that can contain keys, certificates, CRLs and numerous other
|
---|
294 | objects.
|
---|
295 | * Move the display of configuration data to configdata.pm.
|
---|
296 | * Allow GNU style "make variables" to be used with Configure.
|
---|
297 | * Claim the namespaces OSSL and OPENSSL, represented as symbol prefixes
|
---|
298 | * Rewrite of devcrypto engine
|
---|
299 |
|
---|
300 | OpenSSL 1.1.0
|
---|
301 | -------------
|
---|
302 |
|
---|
303 | ### Major changes between OpenSSL 1.1.0k and OpenSSL 1.1.0l [10 Sep 2019]
|
---|
304 |
|
---|
305 | * Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
|
---|
306 | ([CVE-2019-1563])
|
---|
307 | * For built-in EC curves, ensure an EC_GROUP built from the curve name is
|
---|
308 | used even when parsing explicit parameters
|
---|
309 | * Compute ECC cofactors if not provided during EC_GROUP construction
|
---|
310 | ([CVE-2019-1547])
|
---|
311 | * Use Windows installation paths in the mingw builds ([CVE-2019-1552])
|
---|
312 |
|
---|
313 | ### Major changes between OpenSSL 1.1.0j and OpenSSL 1.1.0k [28 May 2019]
|
---|
314 |
|
---|
315 | * Prevent over long nonces in ChaCha20-Poly1305 ([CVE-2019-1543])
|
---|
316 |
|
---|
317 | ### Major changes between OpenSSL 1.1.0i and OpenSSL 1.1.0j [20 Nov 2018]
|
---|
318 |
|
---|
319 | * Timing vulnerability in DSA signature generation ([CVE-2018-0734])
|
---|
320 | * Timing vulnerability in ECDSA signature generation ([CVE-2018-0735])
|
---|
321 |
|
---|
322 | ### Major changes between OpenSSL 1.1.0h and OpenSSL 1.1.0i [14 Aug 2018]
|
---|
323 |
|
---|
324 | * Client DoS due to large DH parameter ([CVE-2018-0732])
|
---|
325 | * Cache timing vulnerability in RSA Key Generation ([CVE-2018-0737])
|
---|
326 |
|
---|
327 | ### Major changes between OpenSSL 1.1.0g and OpenSSL 1.1.0h [27 Mar 2018]
|
---|
328 |
|
---|
329 | * Constructed ASN.1 types with a recursive definition could exceed the
|
---|
330 | stack ([CVE-2018-0739])
|
---|
331 | * Incorrect CRYPTO_memcmp on HP-UX PA-RISC ([CVE-2018-0733])
|
---|
332 | * rsaz_1024_mul_avx2 overflow bug on x86_64 ([CVE-2017-3738])
|
---|
333 |
|
---|
334 | ### Major changes between OpenSSL 1.1.0f and OpenSSL 1.1.0g [2 Nov 2017]
|
---|
335 |
|
---|
336 | * bn_sqrx8x_internal carry bug on x86_64 ([CVE-2017-3736])
|
---|
337 | * Malformed X.509 IPAddressFamily could cause OOB read ([CVE-2017-3735])
|
---|
338 |
|
---|
339 | ### Major changes between OpenSSL 1.1.0e and OpenSSL 1.1.0f [25 May 2017]
|
---|
340 |
|
---|
341 | * config now recognises 64-bit mingw and chooses mingw64 instead of mingw
|
---|
342 |
|
---|
343 | ### Major changes between OpenSSL 1.1.0d and OpenSSL 1.1.0e [16 Feb 2017]
|
---|
344 |
|
---|
345 | * Encrypt-Then-Mac renegotiation crash ([CVE-2017-3733])
|
---|
346 |
|
---|
347 | ### Major changes between OpenSSL 1.1.0c and OpenSSL 1.1.0d [26 Jan 2017]
|
---|
348 |
|
---|
349 | * Truncated packet could crash via OOB read ([CVE-2017-3731])
|
---|
350 | * Bad (EC)DHE parameters cause a client crash ([CVE-2017-3730])
|
---|
351 | * BN_mod_exp may produce incorrect results on x86_64 ([CVE-2017-3732])
|
---|
352 |
|
---|
353 | ### Major changes between OpenSSL 1.1.0b and OpenSSL 1.1.0c [10 Nov 2016]
|
---|
354 |
|
---|
355 | * ChaCha20/Poly1305 heap-buffer-overflow ([CVE-2016-7054])
|
---|
356 | * CMS Null dereference ([CVE-2016-7053])
|
---|
357 | * Montgomery multiplication may produce incorrect results ([CVE-2016-7055])
|
---|
358 |
|
---|
359 | ### Major changes between OpenSSL 1.1.0a and OpenSSL 1.1.0b [26 Sep 2016]
|
---|
360 |
|
---|
361 | * Fix Use After Free for large message sizes ([CVE-2016-6309])
|
---|
362 |
|
---|
363 | ### Major changes between OpenSSL 1.1.0 and OpenSSL 1.1.0a [22 Sep 2016]
|
---|
364 |
|
---|
365 | * OCSP Status Request extension unbounded memory growth ([CVE-2016-6304])
|
---|
366 | * SSL_peek() hang on empty record ([CVE-2016-6305])
|
---|
367 | * Excessive allocation of memory in tls_get_message_header()
|
---|
368 | ([CVE-2016-6307])
|
---|
369 | * Excessive allocation of memory in dtls1_preprocess_fragment()
|
---|
370 | ([CVE-2016-6308])
|
---|
371 |
|
---|
372 | ### Major changes between OpenSSL 1.0.2h and OpenSSL 1.1.0 [25 Aug 2016]
|
---|
373 |
|
---|
374 | * Copyright text was shrunk to a boilerplate that points to the license
|
---|
375 | * "shared" builds are now the default when possible
|
---|
376 | * Added support for "pipelining"
|
---|
377 | * Added the AFALG engine
|
---|
378 | * New threading API implemented
|
---|
379 | * Support for ChaCha20 and Poly1305 added to libcrypto and libssl
|
---|
380 | * Support for extended master secret
|
---|
381 | * CCM ciphersuites
|
---|
382 | * Reworked test suite, now based on perl, Test::Harness and Test::More
|
---|
383 | * *Most* libcrypto and libssl public structures were made opaque,
|
---|
384 | including:
|
---|
385 | BIGNUM and associated types, EC_KEY and EC_KEY_METHOD,
|
---|
386 | DH and DH_METHOD, DSA and DSA_METHOD, RSA and RSA_METHOD,
|
---|
387 | BIO and BIO_METHOD, EVP_MD_CTX, EVP_MD, EVP_CIPHER_CTX,
|
---|
388 | EVP_CIPHER, EVP_PKEY and associated types, HMAC_CTX,
|
---|
389 | X509, X509_CRL, X509_OBJECT, X509_STORE_CTX, X509_STORE,
|
---|
390 | X509_LOOKUP, X509_LOOKUP_METHOD
|
---|
391 | * libssl internal structures made opaque
|
---|
392 | * SSLv2 support removed
|
---|
393 | * Kerberos ciphersuite support removed
|
---|
394 | * RC4 removed from DEFAULT ciphersuites in libssl
|
---|
395 | * 40 and 56 bit cipher support removed from libssl
|
---|
396 | * All public header files moved to include/openssl, no more symlinking
|
---|
397 | * SSL/TLS state machine, version negotiation and record layer rewritten
|
---|
398 | * EC revision: now operations use new EC_KEY_METHOD.
|
---|
399 | * Support for OCB mode added to libcrypto
|
---|
400 | * Support for asynchronous crypto operations added to libcrypto and libssl
|
---|
401 | * Deprecated interfaces can now be disabled at build time either
|
---|
402 | relative to the latest release via the "no-deprecated" Configure
|
---|
403 | argument, or via the "--api=1.1.0|1.0.0|0.9.8" option.
|
---|
404 | * Application software can be compiled with -DOPENSSL_API_COMPAT=version
|
---|
405 | to ensure that features deprecated in that version are not exposed.
|
---|
406 | * Support for RFC6698/RFC7671 DANE TLSA peer authentication
|
---|
407 | * Change of Configure to use --prefix as the main installation
|
---|
408 | directory location rather than --openssldir. The latter becomes
|
---|
409 | the directory for certs, private key and openssl.cnf exclusively.
|
---|
410 | * Reworked BIO networking library, with full support for IPv6.
|
---|
411 | * New "unified" build system
|
---|
412 | * New security levels
|
---|
413 | * Support for scrypt algorithm
|
---|
414 | * Support for X25519
|
---|
415 | * Extended SSL_CONF support using configuration files
|
---|
416 | * KDF algorithm support. Implement TLS PRF as a KDF.
|
---|
417 | * Support for Certificate Transparency
|
---|
418 | * HKDF support.
|
---|
419 |
|
---|
420 | OpenSSL 1.0.2
|
---|
421 | -------------
|
---|
422 |
|
---|
423 | ### Major changes between OpenSSL 1.0.2s and OpenSSL 1.0.2t [10 Sep 2019]
|
---|
424 |
|
---|
425 | * Fixed a padding oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey
|
---|
426 | ([CVE-2019-1563])
|
---|
427 | * For built-in EC curves, ensure an EC_GROUP built from the curve name is
|
---|
428 | used even when parsing explicit parameters
|
---|
429 | * Compute ECC cofactors if not provided during EC_GROUP construction
|
---|
430 | ([CVE-2019-1547])
|
---|
431 | * Document issue with installation paths in diverse Windows builds
|
---|
432 | ([CVE-2019-1552])
|
---|
433 |
|
---|
434 | ### Major changes between OpenSSL 1.0.2r and OpenSSL 1.0.2s [28 May 2019]
|
---|
435 |
|
---|
436 | * None
|
---|
437 |
|
---|
438 | ### Major changes between OpenSSL 1.0.2q and OpenSSL 1.0.2r [26 Feb 2019]
|
---|
439 |
|
---|
440 | * 0-byte record padding oracle ([CVE-2019-1559])
|
---|
441 |
|
---|
442 | ### Major changes between OpenSSL 1.0.2p and OpenSSL 1.0.2q [20 Nov 2018]
|
---|
443 |
|
---|
444 | * Microarchitecture timing vulnerability in ECC scalar multiplication ([CVE-2018-5407])
|
---|
445 | * Timing vulnerability in DSA signature generation ([CVE-2018-0734])
|
---|
446 |
|
---|
447 | ### Major changes between OpenSSL 1.0.2o and OpenSSL 1.0.2p [14 Aug 2018]
|
---|
448 |
|
---|
449 | * Client DoS due to large DH parameter ([CVE-2018-0732])
|
---|
450 | * Cache timing vulnerability in RSA Key Generation ([CVE-2018-0737])
|
---|
451 |
|
---|
452 | ### Major changes between OpenSSL 1.0.2n and OpenSSL 1.0.2o [27 Mar 2018]
|
---|
453 |
|
---|
454 | * Constructed ASN.1 types with a recursive definition could exceed the
|
---|
455 | stack ([CVE-2018-0739])
|
---|
456 |
|
---|
457 | ### Major changes between OpenSSL 1.0.2m and OpenSSL 1.0.2n [7 Dec 2017]
|
---|
458 |
|
---|
459 | * Read/write after SSL object in error state ([CVE-2017-3737])
|
---|
460 | * rsaz_1024_mul_avx2 overflow bug on x86_64 ([CVE-2017-3738])
|
---|
461 |
|
---|
462 | ### Major changes between OpenSSL 1.0.2l and OpenSSL 1.0.2m [2 Nov 2017]
|
---|
463 |
|
---|
464 | * bn_sqrx8x_internal carry bug on x86_64 ([CVE-2017-3736])
|
---|
465 | * Malformed X.509 IPAddressFamily could cause OOB read ([CVE-2017-3735])
|
---|
466 |
|
---|
467 | ### Major changes between OpenSSL 1.0.2k and OpenSSL 1.0.2l [25 May 2017]
|
---|
468 |
|
---|
469 | * config now recognises 64-bit mingw and chooses mingw64 instead of mingw
|
---|
470 |
|
---|
471 | ### Major changes between OpenSSL 1.0.2j and OpenSSL 1.0.2k [26 Jan 2017]
|
---|
472 |
|
---|
473 | * Truncated packet could crash via OOB read ([CVE-2017-3731])
|
---|
474 | * BN_mod_exp may produce incorrect results on x86_64 ([CVE-2017-3732])
|
---|
475 | * Montgomery multiplication may produce incorrect results ([CVE-2016-7055])
|
---|
476 |
|
---|
477 | ### Major changes between OpenSSL 1.0.2i and OpenSSL 1.0.2j [26 Sep 2016]
|
---|
478 |
|
---|
479 | * Missing CRL sanity check ([CVE-2016-7052])
|
---|
480 |
|
---|
481 | ### Major changes between OpenSSL 1.0.2h and OpenSSL 1.0.2i [22 Sep 2016]
|
---|
482 |
|
---|
483 | * OCSP Status Request extension unbounded memory growth ([CVE-2016-6304])
|
---|
484 | * SWEET32 Mitigation ([CVE-2016-2183])
|
---|
485 | * OOB write in MDC2_Update() ([CVE-2016-6303])
|
---|
486 | * Malformed SHA512 ticket DoS ([CVE-2016-6302])
|
---|
487 | * OOB write in BN_bn2dec() ([CVE-2016-2182])
|
---|
488 | * OOB read in TS_OBJ_print_bio() ([CVE-2016-2180])
|
---|
489 | * Pointer arithmetic undefined behaviour ([CVE-2016-2177])
|
---|
490 | * Constant time flag not preserved in DSA signing ([CVE-2016-2178])
|
---|
491 | * DTLS buffered message DoS ([CVE-2016-2179])
|
---|
492 | * DTLS replay protection DoS ([CVE-2016-2181])
|
---|
493 | * Certificate message OOB reads ([CVE-2016-6306])
|
---|
494 |
|
---|
495 | ### Major changes between OpenSSL 1.0.2g and OpenSSL 1.0.2h [3 May 2016]
|
---|
496 |
|
---|
497 | * Prevent padding oracle in AES-NI CBC MAC check ([CVE-2016-2107])
|
---|
498 | * Fix EVP_EncodeUpdate overflow ([CVE-2016-2105])
|
---|
499 | * Fix EVP_EncryptUpdate overflow ([CVE-2016-2106])
|
---|
500 | * Prevent ASN.1 BIO excessive memory allocation ([CVE-2016-2109])
|
---|
501 | * EBCDIC overread ([CVE-2016-2176])
|
---|
502 | * Modify behavior of ALPN to invoke callback after SNI/servername
|
---|
503 | callback, such that updates to the SSL_CTX affect ALPN.
|
---|
504 | * Remove LOW from the DEFAULT cipher list. This removes singles DES from
|
---|
505 | the default.
|
---|
506 | * Only remove the SSLv2 methods with the no-ssl2-method option.
|
---|
507 |
|
---|
508 | ### Major changes between OpenSSL 1.0.2f and OpenSSL 1.0.2g [1 Mar 2016]
|
---|
509 |
|
---|
510 | * Disable weak ciphers in SSLv3 and up in default builds of OpenSSL.
|
---|
511 | * Disable SSLv2 default build, default negotiation and weak ciphers
|
---|
512 | ([CVE-2016-0800])
|
---|
513 | * Fix a double-free in DSA code ([CVE-2016-0705])
|
---|
514 | * Disable SRP fake user seed to address a server memory leak
|
---|
515 | ([CVE-2016-0798])
|
---|
516 | * Fix BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption
|
---|
517 | ([CVE-2016-0797])
|
---|
518 | * Fix memory issues in BIO_*printf functions ([CVE-2016-0799])
|
---|
519 | * Fix side channel attack on modular exponentiation ([CVE-2016-0702])
|
---|
520 |
|
---|
521 | ### Major changes between OpenSSL 1.0.2e and OpenSSL 1.0.2f [28 Jan 2016]
|
---|
522 |
|
---|
523 | * DH small subgroups ([CVE-2016-0701])
|
---|
524 | * SSLv2 doesn't block disabled ciphers ([CVE-2015-3197])
|
---|
525 |
|
---|
526 | ### Major changes between OpenSSL 1.0.2d and OpenSSL 1.0.2e [3 Dec 2015]
|
---|
527 |
|
---|
528 | * BN_mod_exp may produce incorrect results on x86_64 ([CVE-2015-3193])
|
---|
529 | * Certificate verify crash with missing PSS parameter ([CVE-2015-3194])
|
---|
530 | * X509_ATTRIBUTE memory leak ([CVE-2015-3195])
|
---|
531 | * Rewrite EVP_DecodeUpdate (base64 decoding) to fix several bugs
|
---|
532 | * In DSA_generate_parameters_ex, if the provided seed is too short,
|
---|
533 | return an error
|
---|
534 |
|
---|
535 | ### Major changes between OpenSSL 1.0.2c and OpenSSL 1.0.2d [9 Jul 2015]
|
---|
536 |
|
---|
537 | * Alternate chains certificate forgery ([CVE-2015-1793])
|
---|
538 | * Race condition handling PSK identify hint ([CVE-2015-3196])
|
---|
539 |
|
---|
540 | ### Major changes between OpenSSL 1.0.2b and OpenSSL 1.0.2c [12 Jun 2015]
|
---|
541 |
|
---|
542 | * Fix HMAC ABI incompatibility
|
---|
543 |
|
---|
544 | ### Major changes between OpenSSL 1.0.2a and OpenSSL 1.0.2b [11 Jun 2015]
|
---|
545 |
|
---|
546 | * Malformed ECParameters causes infinite loop ([CVE-2015-1788])
|
---|
547 | * Exploitable out-of-bounds read in X509_cmp_time ([CVE-2015-1789])
|
---|
548 | * PKCS7 crash with missing EnvelopedContent ([CVE-2015-1790])
|
---|
549 | * CMS verify infinite loop with unknown hash function ([CVE-2015-1792])
|
---|
550 | * Race condition handling NewSessionTicket ([CVE-2015-1791])
|
---|
551 |
|
---|
552 | ### Major changes between OpenSSL 1.0.2 and OpenSSL 1.0.2a [19 Mar 2015]
|
---|
553 |
|
---|
554 | * OpenSSL 1.0.2 ClientHello sigalgs DoS fix ([CVE-2015-0291])
|
---|
555 | * Multiblock corrupted pointer fix ([CVE-2015-0290])
|
---|
556 | * Segmentation fault in DTLSv1_listen fix ([CVE-2015-0207])
|
---|
557 | * Segmentation fault in ASN1_TYPE_cmp fix ([CVE-2015-0286])
|
---|
558 | * Segmentation fault for invalid PSS parameters fix ([CVE-2015-0208])
|
---|
559 | * ASN.1 structure reuse memory corruption fix ([CVE-2015-0287])
|
---|
560 | * PKCS7 NULL pointer dereferences fix ([CVE-2015-0289])
|
---|
561 | * DoS via reachable assert in SSLv2 servers fix ([CVE-2015-0293])
|
---|
562 | * Empty CKE with client auth and DHE fix ([CVE-2015-1787])
|
---|
563 | * Handshake with unseeded PRNG fix ([CVE-2015-0285])
|
---|
564 | * Use After Free following d2i_ECPrivatekey error fix ([CVE-2015-0209])
|
---|
565 | * X509_to_X509_REQ NULL pointer deref fix ([CVE-2015-0288])
|
---|
566 | * Removed the export ciphers from the DEFAULT ciphers
|
---|
567 |
|
---|
568 | ### Major changes between OpenSSL 1.0.1l and OpenSSL 1.0.2 [22 Jan 2015]
|
---|
569 |
|
---|
570 | * Suite B support for TLS 1.2 and DTLS 1.2
|
---|
571 | * Support for DTLS 1.2
|
---|
572 | * TLS automatic EC curve selection.
|
---|
573 | * API to set TLS supported signature algorithms and curves
|
---|
574 | * SSL_CONF configuration API.
|
---|
575 | * TLS Brainpool support.
|
---|
576 | * ALPN support.
|
---|
577 | * CMS support for RSA-PSS, RSA-OAEP, ECDH and X9.42 DH.
|
---|
578 |
|
---|
579 | OpenSSL 1.0.1
|
---|
580 | -------------
|
---|
581 |
|
---|
582 | ### Major changes between OpenSSL 1.0.1t and OpenSSL 1.0.1u [22 Sep 2016]
|
---|
583 |
|
---|
584 | * OCSP Status Request extension unbounded memory growth ([CVE-2016-6304])
|
---|
585 | * SWEET32 Mitigation ([CVE-2016-2183])
|
---|
586 | * OOB write in MDC2_Update() ([CVE-2016-6303])
|
---|
587 | * Malformed SHA512 ticket DoS ([CVE-2016-6302])
|
---|
588 | * OOB write in BN_bn2dec() ([CVE-2016-2182])
|
---|
589 | * OOB read in TS_OBJ_print_bio() ([CVE-2016-2180])
|
---|
590 | * Pointer arithmetic undefined behaviour ([CVE-2016-2177])
|
---|
591 | * Constant time flag not preserved in DSA signing ([CVE-2016-2178])
|
---|
592 | * DTLS buffered message DoS ([CVE-2016-2179])
|
---|
593 | * DTLS replay protection DoS ([CVE-2016-2181])
|
---|
594 | * Certificate message OOB reads ([CVE-2016-6306])
|
---|
595 |
|
---|
596 | ### Major changes between OpenSSL 1.0.1s and OpenSSL 1.0.1t [3 May 2016]
|
---|
597 |
|
---|
598 | * Prevent padding oracle in AES-NI CBC MAC check ([CVE-2016-2107])
|
---|
599 | * Fix EVP_EncodeUpdate overflow ([CVE-2016-2105])
|
---|
600 | * Fix EVP_EncryptUpdate overflow ([CVE-2016-2106])
|
---|
601 | * Prevent ASN.1 BIO excessive memory allocation ([CVE-2016-2109])
|
---|
602 | * EBCDIC overread ([CVE-2016-2176])
|
---|
603 | * Modify behavior of ALPN to invoke callback after SNI/servername
|
---|
604 | callback, such that updates to the SSL_CTX affect ALPN.
|
---|
605 | * Remove LOW from the DEFAULT cipher list. This removes singles DES from
|
---|
606 | the default.
|
---|
607 | * Only remove the SSLv2 methods with the no-ssl2-method option.
|
---|
608 |
|
---|
609 | ### Major changes between OpenSSL 1.0.1r and OpenSSL 1.0.1s [1 Mar 2016]
|
---|
610 |
|
---|
611 | * Disable weak ciphers in SSLv3 and up in default builds of OpenSSL.
|
---|
612 | * Disable SSLv2 default build, default negotiation and weak ciphers
|
---|
613 | ([CVE-2016-0800])
|
---|
614 | * Fix a double-free in DSA code ([CVE-2016-0705])
|
---|
615 | * Disable SRP fake user seed to address a server memory leak
|
---|
616 | ([CVE-2016-0798])
|
---|
617 | * Fix BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption
|
---|
618 | ([CVE-2016-0797])
|
---|
619 | * Fix memory issues in BIO_*printf functions ([CVE-2016-0799])
|
---|
620 | * Fix side channel attack on modular exponentiation ([CVE-2016-0702])
|
---|
621 |
|
---|
622 | ### Major changes between OpenSSL 1.0.1q and OpenSSL 1.0.1r [28 Jan 2016]
|
---|
623 |
|
---|
624 | * Protection for DH small subgroup attacks
|
---|
625 | * SSLv2 doesn't block disabled ciphers ([CVE-2015-3197])
|
---|
626 |
|
---|
627 | ### Major changes between OpenSSL 1.0.1p and OpenSSL 1.0.1q [3 Dec 2015]
|
---|
628 |
|
---|
629 | * Certificate verify crash with missing PSS parameter ([CVE-2015-3194])
|
---|
630 | * X509_ATTRIBUTE memory leak ([CVE-2015-3195])
|
---|
631 | * Rewrite EVP_DecodeUpdate (base64 decoding) to fix several bugs
|
---|
632 | * In DSA_generate_parameters_ex, if the provided seed is too short,
|
---|
633 | return an error
|
---|
634 |
|
---|
635 | ### Major changes between OpenSSL 1.0.1o and OpenSSL 1.0.1p [9 Jul 2015]
|
---|
636 |
|
---|
637 | * Alternate chains certificate forgery ([CVE-2015-1793])
|
---|
638 | * Race condition handling PSK identify hint ([CVE-2015-3196])
|
---|
639 |
|
---|
640 | ### Major changes between OpenSSL 1.0.1n and OpenSSL 1.0.1o [12 Jun 2015]
|
---|
641 |
|
---|
642 | * Fix HMAC ABI incompatibility
|
---|
643 |
|
---|
644 | ### Major changes between OpenSSL 1.0.1m and OpenSSL 1.0.1n [11 Jun 2015]
|
---|
645 |
|
---|
646 | * Malformed ECParameters causes infinite loop ([CVE-2015-1788])
|
---|
647 | * Exploitable out-of-bounds read in X509_cmp_time ([CVE-2015-1789])
|
---|
648 | * PKCS7 crash with missing EnvelopedContent ([CVE-2015-1790])
|
---|
649 | * CMS verify infinite loop with unknown hash function ([CVE-2015-1792])
|
---|
650 | * Race condition handling NewSessionTicket ([CVE-2015-1791])
|
---|
651 |
|
---|
652 | ### Major changes between OpenSSL 1.0.1l and OpenSSL 1.0.1m [19 Mar 2015]
|
---|
653 |
|
---|
654 | * Segmentation fault in ASN1_TYPE_cmp fix ([CVE-2015-0286])
|
---|
655 | * ASN.1 structure reuse memory corruption fix ([CVE-2015-0287])
|
---|
656 | * PKCS7 NULL pointer dereferences fix ([CVE-2015-0289])
|
---|
657 | * DoS via reachable assert in SSLv2 servers fix ([CVE-2015-0293])
|
---|
658 | * Use After Free following d2i_ECPrivatekey error fix ([CVE-2015-0209])
|
---|
659 | * X509_to_X509_REQ NULL pointer deref fix ([CVE-2015-0288])
|
---|
660 | * Removed the export ciphers from the DEFAULT ciphers
|
---|
661 |
|
---|
662 | ### Major changes between OpenSSL 1.0.1k and OpenSSL 1.0.1l [15 Jan 2015]
|
---|
663 |
|
---|
664 | * Build fixes for the Windows and OpenVMS platforms
|
---|
665 |
|
---|
666 | ### Major changes between OpenSSL 1.0.1j and OpenSSL 1.0.1k [8 Jan 2015]
|
---|
667 |
|
---|
668 | * Fix for [CVE-2014-3571]
|
---|
669 | * Fix for [CVE-2015-0206]
|
---|
670 | * Fix for [CVE-2014-3569]
|
---|
671 | * Fix for [CVE-2014-3572]
|
---|
672 | * Fix for [CVE-2015-0204]
|
---|
673 | * Fix for [CVE-2015-0205]
|
---|
674 | * Fix for [CVE-2014-8275]
|
---|
675 | * Fix for [CVE-2014-3570]
|
---|
676 |
|
---|
677 | ### Major changes between OpenSSL 1.0.1i and OpenSSL 1.0.1j [15 Oct 2014]
|
---|
678 |
|
---|
679 | * Fix for [CVE-2014-3513]
|
---|
680 | * Fix for [CVE-2014-3567]
|
---|
681 | * Mitigation for [CVE-2014-3566] (SSL protocol vulnerability)
|
---|
682 | * Fix for [CVE-2014-3568]
|
---|
683 |
|
---|
684 | ### Major changes between OpenSSL 1.0.1h and OpenSSL 1.0.1i [6 Aug 2014]
|
---|
685 |
|
---|
686 | * Fix for [CVE-2014-3512]
|
---|
687 | * Fix for [CVE-2014-3511]
|
---|
688 | * Fix for [CVE-2014-3510]
|
---|
689 | * Fix for [CVE-2014-3507]
|
---|
690 | * Fix for [CVE-2014-3506]
|
---|
691 | * Fix for [CVE-2014-3505]
|
---|
692 | * Fix for [CVE-2014-3509]
|
---|
693 | * Fix for [CVE-2014-5139]
|
---|
694 | * Fix for [CVE-2014-3508]
|
---|
695 |
|
---|
696 | ### Major changes between OpenSSL 1.0.1g and OpenSSL 1.0.1h [5 Jun 2014]
|
---|
697 |
|
---|
698 | * Fix for [CVE-2014-0224]
|
---|
699 | * Fix for [CVE-2014-0221]
|
---|
700 | * Fix for [CVE-2014-0198]
|
---|
701 | * Fix for [CVE-2014-0195]
|
---|
702 | * Fix for [CVE-2014-3470]
|
---|
703 | * Fix for [CVE-2010-5298]
|
---|
704 |
|
---|
705 | ### Major changes between OpenSSL 1.0.1f and OpenSSL 1.0.1g [7 Apr 2014]
|
---|
706 |
|
---|
707 | * Fix for [CVE-2014-0160]
|
---|
708 | * Add TLS padding extension workaround for broken servers.
|
---|
709 | * Fix for [CVE-2014-0076]
|
---|
710 |
|
---|
711 | ### Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014]
|
---|
712 |
|
---|
713 | * Don't include gmt_unix_time in TLS server and client random values
|
---|
714 | * Fix for TLS record tampering bug ([CVE-2013-4353])
|
---|
715 | * Fix for TLS version checking bug ([CVE-2013-6449])
|
---|
716 | * Fix for DTLS retransmission bug ([CVE-2013-6450])
|
---|
717 |
|
---|
718 | ### Major changes between OpenSSL 1.0.1d and OpenSSL 1.0.1e [11 Feb 2013]
|
---|
719 |
|
---|
720 | * Corrected fix for ([CVE-2013-0169])
|
---|
721 |
|
---|
722 | ### Major changes between OpenSSL 1.0.1c and OpenSSL 1.0.1d [4 Feb 2013]
|
---|
723 |
|
---|
724 | * Fix renegotiation in TLS 1.1, 1.2 by using the correct TLS version.
|
---|
725 | * Include the fips configuration module.
|
---|
726 | * Fix OCSP bad key DoS attack ([CVE-2013-0166])
|
---|
727 | * Fix for SSL/TLS/DTLS CBC plaintext recovery attack ([CVE-2013-0169])
|
---|
728 | * Fix for TLS AESNI record handling flaw ([CVE-2012-2686])
|
---|
729 |
|
---|
730 | ### Major changes between OpenSSL 1.0.1b and OpenSSL 1.0.1c [10 May 2012]
|
---|
731 |
|
---|
732 | * Fix TLS/DTLS record length checking bug ([CVE-2012-2333])
|
---|
733 | * Don't attempt to use non-FIPS composite ciphers in FIPS mode.
|
---|
734 |
|
---|
735 | ### Major changes between OpenSSL 1.0.1a and OpenSSL 1.0.1b [26 Apr 2012]
|
---|
736 |
|
---|
737 | * Fix compilation error on non-x86 platforms.
|
---|
738 | * Make FIPS capable OpenSSL ciphers work in non-FIPS mode.
|
---|
739 | * Fix SSL_OP_NO_TLSv1_1 clash with SSL_OP_ALL in OpenSSL 1.0.0
|
---|
740 |
|
---|
741 | ### Major changes between OpenSSL 1.0.1 and OpenSSL 1.0.1a [19 Apr 2012]
|
---|
742 |
|
---|
743 | * Fix for ASN1 overflow bug ([CVE-2012-2110])
|
---|
744 | * Workarounds for some servers that hang on long client hellos.
|
---|
745 | * Fix SEGV in AES code.
|
---|
746 |
|
---|
747 | ### Major changes between OpenSSL 1.0.0h and OpenSSL 1.0.1 [14 Mar 2012]
|
---|
748 |
|
---|
749 | * TLS/DTLS heartbeat support.
|
---|
750 | * SCTP support.
|
---|
751 | * RFC 5705 TLS key material exporter.
|
---|
752 | * RFC 5764 DTLS-SRTP negotiation.
|
---|
753 | * Next Protocol Negotiation.
|
---|
754 | * PSS signatures in certificates, requests and CRLs.
|
---|
755 | * Support for password based recipient info for CMS.
|
---|
756 | * Support TLS v1.2 and TLS v1.1.
|
---|
757 | * Preliminary FIPS capability for unvalidated 2.0 FIPS module.
|
---|
758 | * SRP support.
|
---|
759 |
|
---|
760 | OpenSSL 1.0.0
|
---|
761 | -------------
|
---|
762 |
|
---|
763 | ### Major changes between OpenSSL 1.0.0s and OpenSSL 1.0.0t [3 Dec 2015]
|
---|
764 |
|
---|
765 | * X509_ATTRIBUTE memory leak (([CVE-2015-3195]))
|
---|
766 | * Race condition handling PSK identify hint ([CVE-2015-3196])
|
---|
767 |
|
---|
768 | ### Major changes between OpenSSL 1.0.0r and OpenSSL 1.0.0s [11 Jun 2015]
|
---|
769 |
|
---|
770 | * Malformed ECParameters causes infinite loop ([CVE-2015-1788])
|
---|
771 | * Exploitable out-of-bounds read in X509_cmp_time ([CVE-2015-1789])
|
---|
772 | * PKCS7 crash with missing EnvelopedContent ([CVE-2015-1790])
|
---|
773 | * CMS verify infinite loop with unknown hash function ([CVE-2015-1792])
|
---|
774 | * Race condition handling NewSessionTicket ([CVE-2015-1791])
|
---|
775 |
|
---|
776 | ### Major changes between OpenSSL 1.0.0q and OpenSSL 1.0.0r [19 Mar 2015]
|
---|
777 |
|
---|
778 | * Segmentation fault in ASN1_TYPE_cmp fix ([CVE-2015-0286])
|
---|
779 | * ASN.1 structure reuse memory corruption fix ([CVE-2015-0287])
|
---|
780 | * PKCS7 NULL pointer dereferences fix ([CVE-2015-0289])
|
---|
781 | * DoS via reachable assert in SSLv2 servers fix ([CVE-2015-0293])
|
---|
782 | * Use After Free following d2i_ECPrivatekey error fix ([CVE-2015-0209])
|
---|
783 | * X509_to_X509_REQ NULL pointer deref fix ([CVE-2015-0288])
|
---|
784 | * Removed the export ciphers from the DEFAULT ciphers
|
---|
785 |
|
---|
786 | ### Major changes between OpenSSL 1.0.0p and OpenSSL 1.0.0q [15 Jan 2015]
|
---|
787 |
|
---|
788 | * Build fixes for the Windows and OpenVMS platforms
|
---|
789 |
|
---|
790 | ### Major changes between OpenSSL 1.0.0o and OpenSSL 1.0.0p [8 Jan 2015]
|
---|
791 |
|
---|
792 | * Fix for [CVE-2014-3571]
|
---|
793 | * Fix for [CVE-2015-0206]
|
---|
794 | * Fix for [CVE-2014-3569]
|
---|
795 | * Fix for [CVE-2014-3572]
|
---|
796 | * Fix for [CVE-2015-0204]
|
---|
797 | * Fix for [CVE-2015-0205]
|
---|
798 | * Fix for [CVE-2014-8275]
|
---|
799 | * Fix for [CVE-2014-3570]
|
---|
800 |
|
---|
801 | ### Major changes between OpenSSL 1.0.0n and OpenSSL 1.0.0o [15 Oct 2014]
|
---|
802 |
|
---|
803 | * Fix for [CVE-2014-3513]
|
---|
804 | * Fix for [CVE-2014-3567]
|
---|
805 | * Mitigation for [CVE-2014-3566] (SSL protocol vulnerability)
|
---|
806 | * Fix for [CVE-2014-3568]
|
---|
807 |
|
---|
808 | ### Major changes between OpenSSL 1.0.0m and OpenSSL 1.0.0n [6 Aug 2014]
|
---|
809 |
|
---|
810 | * Fix for [CVE-2014-3510]
|
---|
811 | * Fix for [CVE-2014-3507]
|
---|
812 | * Fix for [CVE-2014-3506]
|
---|
813 | * Fix for [CVE-2014-3505]
|
---|
814 | * Fix for [CVE-2014-3509]
|
---|
815 | * Fix for [CVE-2014-3508]
|
---|
816 |
|
---|
817 | Known issues in OpenSSL 1.0.0m:
|
---|
818 |
|
---|
819 | * EAP-FAST and other applications using tls_session_secret_cb
|
---|
820 | won't resume sessions. Fixed in 1.0.0n-dev
|
---|
821 | * Compilation failure of s3_pkt.c on some platforms due to missing
|
---|
822 | `<limits.h>` include. Fixed in 1.0.0n-dev
|
---|
823 |
|
---|
824 | ### Major changes between OpenSSL 1.0.0l and OpenSSL 1.0.0m [5 Jun 2014]
|
---|
825 |
|
---|
826 | * Fix for [CVE-2014-0224]
|
---|
827 | * Fix for [CVE-2014-0221]
|
---|
828 | * Fix for [CVE-2014-0198]
|
---|
829 | * Fix for [CVE-2014-0195]
|
---|
830 | * Fix for [CVE-2014-3470]
|
---|
831 | * Fix for [CVE-2014-0076]
|
---|
832 | * Fix for [CVE-2010-5298]
|
---|
833 |
|
---|
834 | ### Major changes between OpenSSL 1.0.0k and OpenSSL 1.0.0l [6 Jan 2014]
|
---|
835 |
|
---|
836 | * Fix for DTLS retransmission bug ([CVE-2013-6450])
|
---|
837 |
|
---|
838 | ### Major changes between OpenSSL 1.0.0j and OpenSSL 1.0.0k [5 Feb 2013]
|
---|
839 |
|
---|
840 | * Fix for SSL/TLS/DTLS CBC plaintext recovery attack ([CVE-2013-0169])
|
---|
841 | * Fix OCSP bad key DoS attack ([CVE-2013-0166])
|
---|
842 |
|
---|
843 | ### Major changes between OpenSSL 1.0.0i and OpenSSL 1.0.0j [10 May 2012]
|
---|
844 |
|
---|
845 | * Fix DTLS record length checking bug ([CVE-2012-2333])
|
---|
846 |
|
---|
847 | ### Major changes between OpenSSL 1.0.0h and OpenSSL 1.0.0i [19 Apr 2012]
|
---|
848 |
|
---|
849 | * Fix for ASN1 overflow bug ([CVE-2012-2110])
|
---|
850 |
|
---|
851 | ### Major changes between OpenSSL 1.0.0g and OpenSSL 1.0.0h [12 Mar 2012]
|
---|
852 |
|
---|
853 | * Fix for CMS/PKCS#7 MMA ([CVE-2012-0884])
|
---|
854 | * Corrected fix for ([CVE-2011-4619])
|
---|
855 | * Various DTLS fixes.
|
---|
856 |
|
---|
857 | ### Major changes between OpenSSL 1.0.0f and OpenSSL 1.0.0g [18 Jan 2012]
|
---|
858 |
|
---|
859 | * Fix for DTLS DoS issue ([CVE-2012-0050])
|
---|
860 |
|
---|
861 | ### Major changes between OpenSSL 1.0.0e and OpenSSL 1.0.0f [4 Jan 2012]
|
---|
862 |
|
---|
863 | * Fix for DTLS plaintext recovery attack ([CVE-2011-4108])
|
---|
864 | * Clear block padding bytes of SSL 3.0 records ([CVE-2011-4576])
|
---|
865 | * Only allow one SGC handshake restart for SSL/TLS ([CVE-2011-4619])
|
---|
866 | * Check parameters are not NULL in GOST ENGINE ([CVE-2012-0027])
|
---|
867 | * Check for malformed RFC3779 data ([CVE-2011-4577])
|
---|
868 |
|
---|
869 | ### Major changes between OpenSSL 1.0.0d and OpenSSL 1.0.0e [6 Sep 2011]
|
---|
870 |
|
---|
871 | * Fix for CRL vulnerability issue ([CVE-2011-3207])
|
---|
872 | * Fix for ECDH crashes ([CVE-2011-3210])
|
---|
873 | * Protection against EC timing attacks.
|
---|
874 | * Support ECDH ciphersuites for certificates using SHA2 algorithms.
|
---|
875 | * Various DTLS fixes.
|
---|
876 |
|
---|
877 | ### Major changes between OpenSSL 1.0.0c and OpenSSL 1.0.0d [8 Feb 2011]
|
---|
878 |
|
---|
879 | * Fix for security issue ([CVE-2011-0014])
|
---|
880 |
|
---|
881 | ### Major changes between OpenSSL 1.0.0b and OpenSSL 1.0.0c [2 Dec 2010]
|
---|
882 |
|
---|
883 | * Fix for security issue ([CVE-2010-4180])
|
---|
884 | * Fix for ([CVE-2010-4252])
|
---|
885 | * Fix mishandling of absent EC point format extension.
|
---|
886 | * Fix various platform compilation issues.
|
---|
887 | * Corrected fix for security issue ([CVE-2010-3864]).
|
---|
888 |
|
---|
889 | ### Major changes between OpenSSL 1.0.0a and OpenSSL 1.0.0b [16 Nov 2010]
|
---|
890 |
|
---|
891 | * Fix for security issue ([CVE-2010-3864]).
|
---|
892 | * Fix for ([CVE-2010-2939])
|
---|
893 | * Fix WIN32 build system for GOST ENGINE.
|
---|
894 |
|
---|
895 | ### Major changes between OpenSSL 1.0.0 and OpenSSL 1.0.0a [1 Jun 2010]
|
---|
896 |
|
---|
897 | * Fix for security issue ([CVE-2010-1633]).
|
---|
898 | * GOST MAC and CFB fixes.
|
---|
899 |
|
---|
900 | ### Major changes between OpenSSL 0.9.8n and OpenSSL 1.0.0 [29 Mar 2010]
|
---|
901 |
|
---|
902 | * RFC3280 path validation: sufficient to process PKITS tests.
|
---|
903 | * Integrated support for PVK files and keyblobs.
|
---|
904 | * Change default private key format to PKCS#8.
|
---|
905 | * CMS support: able to process all examples in RFC4134
|
---|
906 | * Streaming ASN1 encode support for PKCS#7 and CMS.
|
---|
907 | * Multiple signer and signer add support for PKCS#7 and CMS.
|
---|
908 | * ASN1 printing support.
|
---|
909 | * Whirlpool hash algorithm added.
|
---|
910 | * RFC3161 time stamp support.
|
---|
911 | * New generalised public key API supporting ENGINE based algorithms.
|
---|
912 | * New generalised public key API utilities.
|
---|
913 | * New ENGINE supporting GOST algorithms.
|
---|
914 | * SSL/TLS GOST ciphersuite support.
|
---|
915 | * PKCS#7 and CMS GOST support.
|
---|
916 | * RFC4279 PSK ciphersuite support.
|
---|
917 | * Supported points format extension for ECC ciphersuites.
|
---|
918 | * ecdsa-with-SHA224/256/384/512 signature types.
|
---|
919 | * dsa-with-SHA224 and dsa-with-SHA256 signature types.
|
---|
920 | * Opaque PRF Input TLS extension support.
|
---|
921 | * Updated time routines to avoid OS limitations.
|
---|
922 |
|
---|
923 | OpenSSL 0.9.x
|
---|
924 | -------------
|
---|
925 |
|
---|
926 | ### Major changes between OpenSSL 0.9.8m and OpenSSL 0.9.8n [24 Mar 2010]
|
---|
927 |
|
---|
928 | * CFB cipher definition fixes.
|
---|
929 | * Fix security issues [CVE-2010-0740] and [CVE-2010-0433].
|
---|
930 |
|
---|
931 | ### Major changes between OpenSSL 0.9.8l and OpenSSL 0.9.8m [25 Feb 2010]
|
---|
932 |
|
---|
933 | * Cipher definition fixes.
|
---|
934 | * Workaround for slow RAND_poll() on some WIN32 versions.
|
---|
935 | * Remove MD2 from algorithm tables.
|
---|
936 | * SPKAC handling fixes.
|
---|
937 | * Support for RFC5746 TLS renegotiation extension.
|
---|
938 | * Compression memory leak fixed.
|
---|
939 | * Compression session resumption fixed.
|
---|
940 | * Ticket and SNI coexistence fixes.
|
---|
941 | * Many fixes to DTLS handling.
|
---|
942 |
|
---|
943 | ### Major changes between OpenSSL 0.9.8k and OpenSSL 0.9.8l [5 Nov 2009]
|
---|
944 |
|
---|
945 | * Temporary work around for [CVE-2009-3555]: disable renegotiation.
|
---|
946 |
|
---|
947 | ### Major changes between OpenSSL 0.9.8j and OpenSSL 0.9.8k [25 Mar 2009]
|
---|
948 |
|
---|
949 | * Fix various build issues.
|
---|
950 | * Fix security issues [CVE-2009-0590], [CVE-2009-0591], [CVE-2009-0789]
|
---|
951 |
|
---|
952 | ### Major changes between OpenSSL 0.9.8i and OpenSSL 0.9.8j [7 Jan 2009]
|
---|
953 |
|
---|
954 | * Fix security issue ([CVE-2008-5077])
|
---|
955 | * Merge FIPS 140-2 branch code.
|
---|
956 |
|
---|
957 | ### Major changes between OpenSSL 0.9.8g and OpenSSL 0.9.8h [28 May 2008]
|
---|
958 |
|
---|
959 | * CryptoAPI ENGINE support.
|
---|
960 | * Various precautionary measures.
|
---|
961 | * Fix for bugs affecting certificate request creation.
|
---|
962 | * Support for local machine keyset attribute in PKCS#12 files.
|
---|
963 |
|
---|
964 | ### Major changes between OpenSSL 0.9.8f and OpenSSL 0.9.8g [19 Oct 2007]
|
---|
965 |
|
---|
966 | * Backport of CMS functionality to 0.9.8.
|
---|
967 | * Fixes for bugs introduced with 0.9.8f.
|
---|
968 |
|
---|
969 | ### Major changes between OpenSSL 0.9.8e and OpenSSL 0.9.8f [11 Oct 2007]
|
---|
970 |
|
---|
971 | * Add gcc 4.2 support.
|
---|
972 | * Add support for AES and SSE2 assembly language optimization
|
---|
973 | for VC++ build.
|
---|
974 | * Support for RFC4507bis and server name extensions if explicitly
|
---|
975 | selected at compile time.
|
---|
976 | * DTLS improvements.
|
---|
977 | * RFC4507bis support.
|
---|
978 | * TLS Extensions support.
|
---|
979 |
|
---|
980 | ### Major changes between OpenSSL 0.9.8d and OpenSSL 0.9.8e [23 Feb 2007]
|
---|
981 |
|
---|
982 | * Various ciphersuite selection fixes.
|
---|
983 | * RFC3779 support.
|
---|
984 |
|
---|
985 | ### Major changes between OpenSSL 0.9.8c and OpenSSL 0.9.8d [28 Sep 2006]
|
---|
986 |
|
---|
987 | * Introduce limits to prevent malicious key DoS ([CVE-2006-2940])
|
---|
988 | * Fix security issues [CVE-2006-2937], [CVE-2006-3737], [CVE-2006-4343]
|
---|
989 | * Changes to ciphersuite selection algorithm
|
---|
990 |
|
---|
991 | ### Major changes between OpenSSL 0.9.8b and OpenSSL 0.9.8c [5 Sep 2006]
|
---|
992 |
|
---|
993 | * Fix Daniel Bleichenbacher forged signature attack, [CVE-2006-4339]
|
---|
994 | * New cipher Camellia
|
---|
995 |
|
---|
996 | ### Major changes between OpenSSL 0.9.8a and OpenSSL 0.9.8b [4 May 2006]
|
---|
997 |
|
---|
998 | * Cipher string fixes.
|
---|
999 | * Fixes for VC++ 2005.
|
---|
1000 | * Updated ECC cipher suite support.
|
---|
1001 | * New functions EVP_CIPHER_CTX_new() and EVP_CIPHER_CTX_free().
|
---|
1002 | * Zlib compression usage fixes.
|
---|
1003 | * Built in dynamic engine compilation support on Win32.
|
---|
1004 | * Fixes auto dynamic engine loading in Win32.
|
---|
1005 |
|
---|
1006 | ### Major changes between OpenSSL 0.9.8 and OpenSSL 0.9.8a [11 Oct 2005]
|
---|
1007 |
|
---|
1008 | * Fix potential SSL 2.0 rollback ([CVE-2005-2969])
|
---|
1009 | * Extended Windows CE support
|
---|
1010 |
|
---|
1011 | ### Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.8 [5 Jul 2005]
|
---|
1012 |
|
---|
1013 | * Major work on the BIGNUM library for higher efficiency and to
|
---|
1014 | make operations more streamlined and less contradictory. This
|
---|
1015 | is the result of a major audit of the BIGNUM library.
|
---|
1016 | * Addition of BIGNUM functions for fields GF(2^m) and NIST
|
---|
1017 | curves, to support the Elliptic Crypto functions.
|
---|
1018 | * Major work on Elliptic Crypto; ECDH and ECDSA added, including
|
---|
1019 | the use through EVP, X509 and ENGINE.
|
---|
1020 | * New ASN.1 mini-compiler that's usable through the OpenSSL
|
---|
1021 | configuration file.
|
---|
1022 | * Added support for ASN.1 indefinite length constructed encoding.
|
---|
1023 | * New PKCS#12 'medium level' API to manipulate PKCS#12 files.
|
---|
1024 | * Complete rework of shared library construction and linking
|
---|
1025 | programs with shared or static libraries, through a separate
|
---|
1026 | Makefile.shared.
|
---|
1027 | * Rework of the passing of parameters from one Makefile to another.
|
---|
1028 | * Changed ENGINE framework to load dynamic engine modules
|
---|
1029 | automatically from specifically given directories.
|
---|
1030 | * New structure and ASN.1 functions for CertificatePair.
|
---|
1031 | * Changed the ZLIB compression method to be stateful.
|
---|
1032 | * Changed the key-generation and primality testing "progress"
|
---|
1033 | mechanism to take a structure that contains the ticker
|
---|
1034 | function and an argument.
|
---|
1035 | * New engine module: GMP (performs private key exponentiation).
|
---|
1036 | * New engine module: VIA PadLOck ACE extension in VIA C3
|
---|
1037 | Nehemiah processors.
|
---|
1038 | * Added support for IPv6 addresses in certificate extensions.
|
---|
1039 | See RFC 1884, section 2.2.
|
---|
1040 | * Added support for certificate policy mappings, policy
|
---|
1041 | constraints and name constraints.
|
---|
1042 | * Added support for multi-valued AVAs in the OpenSSL
|
---|
1043 | configuration file.
|
---|
1044 | * Added support for multiple certificates with the same subject
|
---|
1045 | in the 'openssl ca' index file.
|
---|
1046 | * Make it possible to create self-signed certificates using
|
---|
1047 | 'openssl ca -selfsign'.
|
---|
1048 | * Make it possible to generate a serial number file with
|
---|
1049 | 'openssl ca -create_serial'.
|
---|
1050 | * New binary search functions with extended functionality.
|
---|
1051 | * New BUF functions.
|
---|
1052 | * New STORE structure and library to provide an interface to all
|
---|
1053 | sorts of data repositories. Supports storage of public and
|
---|
1054 | private keys, certificates, CRLs, numbers and arbitrary blobs.
|
---|
1055 | This library is unfortunately unfinished and unused within
|
---|
1056 | OpenSSL.
|
---|
1057 | * New control functions for the error stack.
|
---|
1058 | * Changed the PKCS#7 library to support one-pass S/MIME
|
---|
1059 | processing.
|
---|
1060 | * Added the possibility to compile without old deprecated
|
---|
1061 | functionality with the OPENSSL_NO_DEPRECATED macro or the
|
---|
1062 | 'no-deprecated' argument to the config and Configure scripts.
|
---|
1063 | * Constification of all ASN.1 conversion functions, and other
|
---|
1064 | affected functions.
|
---|
1065 | * Improved platform support for PowerPC.
|
---|
1066 | * New FIPS 180-2 algorithms (SHA-224, -256, -384 and -512).
|
---|
1067 | * New X509_VERIFY_PARAM structure to support parameterisation
|
---|
1068 | of X.509 path validation.
|
---|
1069 | * Major overhaul of RC4 performance on Intel P4, IA-64 and
|
---|
1070 | AMD64.
|
---|
1071 | * Changed the Configure script to have some algorithms disabled
|
---|
1072 | by default. Those can be explicitly enabled with the new
|
---|
1073 | argument form 'enable-xxx'.
|
---|
1074 | * Change the default digest in 'openssl' commands from MD5 to
|
---|
1075 | SHA-1.
|
---|
1076 | * Added support for DTLS.
|
---|
1077 | * New BIGNUM blinding.
|
---|
1078 | * Added support for the RSA-PSS encryption scheme
|
---|
1079 | * Added support for the RSA X.931 padding.
|
---|
1080 | * Added support for BSD sockets on NetWare.
|
---|
1081 | * Added support for files larger than 2GB.
|
---|
1082 | * Added initial support for Win64.
|
---|
1083 | * Added alternate pkg-config files.
|
---|
1084 |
|
---|
1085 | ### Major changes between OpenSSL 0.9.7l and OpenSSL 0.9.7m [23 Feb 2007]
|
---|
1086 |
|
---|
1087 | * FIPS 1.1.1 module linking.
|
---|
1088 | * Various ciphersuite selection fixes.
|
---|
1089 |
|
---|
1090 | ### Major changes between OpenSSL 0.9.7k and OpenSSL 0.9.7l [28 Sep 2006]
|
---|
1091 |
|
---|
1092 | * Introduce limits to prevent malicious key DoS ([CVE-2006-2940])
|
---|
1093 | * Fix security issues [CVE-2006-2937], [CVE-2006-3737], [CVE-2006-4343]
|
---|
1094 |
|
---|
1095 | ### Major changes between OpenSSL 0.9.7j and OpenSSL 0.9.7k [5 Sep 2006]
|
---|
1096 |
|
---|
1097 | * Fix Daniel Bleichenbacher forged signature attack, [CVE-2006-4339]
|
---|
1098 |
|
---|
1099 | ### Major changes between OpenSSL 0.9.7i and OpenSSL 0.9.7j [4 May 2006]
|
---|
1100 |
|
---|
1101 | * Visual C++ 2005 fixes.
|
---|
1102 | * Update Windows build system for FIPS.
|
---|
1103 |
|
---|
1104 | ### Major changes between OpenSSL 0.9.7h and OpenSSL 0.9.7i [14 Oct 2005]
|
---|
1105 |
|
---|
1106 | * Give EVP_MAX_MD_SIZE its old value, except for a FIPS build.
|
---|
1107 |
|
---|
1108 | ### Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.7h [11 Oct 2005]
|
---|
1109 |
|
---|
1110 | * Fix SSL 2.0 Rollback ([CVE-2005-2969])
|
---|
1111 | * Allow use of fixed-length exponent on DSA signing
|
---|
1112 | * Default fixed-window RSA, DSA, DH private-key operations
|
---|
1113 |
|
---|
1114 | ### Major changes between OpenSSL 0.9.7f and OpenSSL 0.9.7g [11 Apr 2005]
|
---|
1115 |
|
---|
1116 | * More compilation issues fixed.
|
---|
1117 | * Adaptation to more modern Kerberos API.
|
---|
1118 | * Enhanced or corrected configuration for Solaris64, Mingw and Cygwin.
|
---|
1119 | * Enhanced x86_64 assembler BIGNUM module.
|
---|
1120 | * More constification.
|
---|
1121 | * Added processing of proxy certificates (RFC 3820).
|
---|
1122 |
|
---|
1123 | ### Major changes between OpenSSL 0.9.7e and OpenSSL 0.9.7f [22 Mar 2005]
|
---|
1124 |
|
---|
1125 | * Several compilation issues fixed.
|
---|
1126 | * Many memory allocation failure checks added.
|
---|
1127 | * Improved comparison of X509 Name type.
|
---|
1128 | * Mandatory basic checks on certificates.
|
---|
1129 | * Performance improvements.
|
---|
1130 |
|
---|
1131 | ### Major changes between OpenSSL 0.9.7d and OpenSSL 0.9.7e [25 Oct 2004]
|
---|
1132 |
|
---|
1133 | * Fix race condition in CRL checking code.
|
---|
1134 | * Fixes to PKCS#7 (S/MIME) code.
|
---|
1135 |
|
---|
1136 | ### Major changes between OpenSSL 0.9.7c and OpenSSL 0.9.7d [17 Mar 2004]
|
---|
1137 |
|
---|
1138 | * Security: Fix Kerberos ciphersuite SSL/TLS handshaking bug
|
---|
1139 | * Security: Fix null-pointer assignment in do_change_cipher_spec()
|
---|
1140 | * Allow multiple active certificates with same subject in CA index
|
---|
1141 | * Multiple X509 verification fixes
|
---|
1142 | * Speed up HMAC and other operations
|
---|
1143 |
|
---|
1144 | ### Major changes between OpenSSL 0.9.7b and OpenSSL 0.9.7c [30 Sep 2003]
|
---|
1145 |
|
---|
1146 | * Security: fix various ASN1 parsing bugs.
|
---|
1147 | * New -ignore_err option to OCSP utility.
|
---|
1148 | * Various interop and bug fixes in S/MIME code.
|
---|
1149 | * SSL/TLS protocol fix for unrequested client certificates.
|
---|
1150 |
|
---|
1151 | ### Major changes between OpenSSL 0.9.7a and OpenSSL 0.9.7b [10 Apr 2003]
|
---|
1152 |
|
---|
1153 | * Security: counter the Klima-Pokorny-Rosa extension of
|
---|
1154 | Bleichbacher's attack
|
---|
1155 | * Security: make RSA blinding default.
|
---|
1156 | * Configuration: Irix fixes, AIX fixes, better mingw support.
|
---|
1157 | * Support for new platforms: linux-ia64-ecc.
|
---|
1158 | * Build: shared library support fixes.
|
---|
1159 | * ASN.1: treat domainComponent correctly.
|
---|
1160 | * Documentation: fixes and additions.
|
---|
1161 |
|
---|
1162 | ### Major changes between OpenSSL 0.9.7 and OpenSSL 0.9.7a [19 Feb 2003]
|
---|
1163 |
|
---|
1164 | * Security: Important security related bugfixes.
|
---|
1165 | * Enhanced compatibility with MIT Kerberos.
|
---|
1166 | * Can be built without the ENGINE framework.
|
---|
1167 | * IA32 assembler enhancements.
|
---|
1168 | * Support for new platforms: FreeBSD/IA64 and FreeBSD/Sparc64.
|
---|
1169 | * Configuration: the no-err option now works properly.
|
---|
1170 | * SSL/TLS: now handles manual certificate chain building.
|
---|
1171 | * SSL/TLS: certain session ID malfunctions corrected.
|
---|
1172 |
|
---|
1173 | ### Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.7 [30 Dec 2002]
|
---|
1174 |
|
---|
1175 | * New library section OCSP.
|
---|
1176 | * Complete rewrite of ASN1 code.
|
---|
1177 | * CRL checking in verify code and openssl utility.
|
---|
1178 | * Extension copying in 'ca' utility.
|
---|
1179 | * Flexible display options in 'ca' utility.
|
---|
1180 | * Provisional support for international characters with UTF8.
|
---|
1181 | * Support for external crypto devices ('engine') is no longer
|
---|
1182 | a separate distribution.
|
---|
1183 | * New elliptic curve library section.
|
---|
1184 | * New AES (Rijndael) library section.
|
---|
1185 | * Support for new platforms: Windows CE, Tandem OSS, A/UX, AIX 64-bit,
|
---|
1186 | Linux x86_64, Linux 64-bit on Sparc v9
|
---|
1187 | * Extended support for some platforms: VxWorks
|
---|
1188 | * Enhanced support for shared libraries.
|
---|
1189 | * Now only builds PIC code when shared library support is requested.
|
---|
1190 | * Support for pkg-config.
|
---|
1191 | * Lots of new manuals.
|
---|
1192 | * Makes symbolic links to or copies of manuals to cover all described
|
---|
1193 | functions.
|
---|
1194 | * Change DES API to clean up the namespace (some applications link also
|
---|
1195 | against libdes providing similar functions having the same name).
|
---|
1196 | Provide macros for backward compatibility (will be removed in the
|
---|
1197 | future).
|
---|
1198 | * Unify handling of cryptographic algorithms (software and engine)
|
---|
1199 | to be available via EVP routines for asymmetric and symmetric ciphers.
|
---|
1200 | * NCONF: new configuration handling routines.
|
---|
1201 | * Change API to use more 'const' modifiers to improve error checking
|
---|
1202 | and help optimizers.
|
---|
1203 | * Finally remove references to RSAref.
|
---|
1204 | * Reworked parts of the BIGNUM code.
|
---|
1205 | * Support for new engines: Broadcom ubsec, Accelerated Encryption
|
---|
1206 | Processing, IBM 4758.
|
---|
1207 | * A few new engines added in the demos area.
|
---|
1208 | * Extended and corrected OID (object identifier) table.
|
---|
1209 | * PRNG: query at more locations for a random device, automatic query for
|
---|
1210 | EGD style random sources at several locations.
|
---|
1211 | * SSL/TLS: allow optional cipher choice according to server's preference.
|
---|
1212 | * SSL/TLS: allow server to explicitly set new session ids.
|
---|
1213 | * SSL/TLS: support Kerberos cipher suites (RFC2712).
|
---|
1214 | Only supports MIT Kerberos for now.
|
---|
1215 | * SSL/TLS: allow more precise control of renegotiations and sessions.
|
---|
1216 | * SSL/TLS: add callback to retrieve SSL/TLS messages.
|
---|
1217 | * SSL/TLS: support AES cipher suites (RFC3268).
|
---|
1218 |
|
---|
1219 | ### Major changes between OpenSSL 0.9.6j and OpenSSL 0.9.6k [30 Sep 2003]
|
---|
1220 |
|
---|
1221 | * Security: fix various ASN1 parsing bugs.
|
---|
1222 | * SSL/TLS protocol fix for unrequested client certificates.
|
---|
1223 |
|
---|
1224 | ### Major changes between OpenSSL 0.9.6i and OpenSSL 0.9.6j [10 Apr 2003]
|
---|
1225 |
|
---|
1226 | * Security: counter the Klima-Pokorny-Rosa extension of
|
---|
1227 | Bleichbacher's attack
|
---|
1228 | * Security: make RSA blinding default.
|
---|
1229 | * Build: shared library support fixes.
|
---|
1230 |
|
---|
1231 | ### Major changes between OpenSSL 0.9.6h and OpenSSL 0.9.6i [19 Feb 2003]
|
---|
1232 |
|
---|
1233 | * Important security related bugfixes.
|
---|
1234 |
|
---|
1235 | ### Major changes between OpenSSL 0.9.6g and OpenSSL 0.9.6h [5 Dec 2002]
|
---|
1236 |
|
---|
1237 | * New configuration targets for Tandem OSS and A/UX.
|
---|
1238 | * New OIDs for Microsoft attributes.
|
---|
1239 | * Better handling of SSL session caching.
|
---|
1240 | * Better comparison of distinguished names.
|
---|
1241 | * Better handling of shared libraries in a mixed GNU/non-GNU environment.
|
---|
1242 | * Support assembler code with Borland C.
|
---|
1243 | * Fixes for length problems.
|
---|
1244 | * Fixes for uninitialised variables.
|
---|
1245 | * Fixes for memory leaks, some unusual crashes and some race conditions.
|
---|
1246 | * Fixes for smaller building problems.
|
---|
1247 | * Updates of manuals, FAQ and other instructive documents.
|
---|
1248 |
|
---|
1249 | ### Major changes between OpenSSL 0.9.6f and OpenSSL 0.9.6g [9 Aug 2002]
|
---|
1250 |
|
---|
1251 | * Important building fixes on Unix.
|
---|
1252 |
|
---|
1253 | ### Major changes between OpenSSL 0.9.6e and OpenSSL 0.9.6f [8 Aug 2002]
|
---|
1254 |
|
---|
1255 | * Various important bugfixes.
|
---|
1256 |
|
---|
1257 | ### Major changes between OpenSSL 0.9.6d and OpenSSL 0.9.6e [30 Jul 2002]
|
---|
1258 |
|
---|
1259 | * Important security related bugfixes.
|
---|
1260 | * Various SSL/TLS library bugfixes.
|
---|
1261 |
|
---|
1262 | ### Major changes between OpenSSL 0.9.6c and OpenSSL 0.9.6d [9 May 2002]
|
---|
1263 |
|
---|
1264 | * Various SSL/TLS library bugfixes.
|
---|
1265 | * Fix DH parameter generation for 'non-standard' generators.
|
---|
1266 |
|
---|
1267 | ### Major changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c [21 Dec 2001]
|
---|
1268 |
|
---|
1269 | * Various SSL/TLS library bugfixes.
|
---|
1270 | * BIGNUM library fixes.
|
---|
1271 | * RSA OAEP and random number generation fixes.
|
---|
1272 | * Object identifiers corrected and added.
|
---|
1273 | * Add assembler BN routines for IA64.
|
---|
1274 | * Add support for OS/390 Unix, UnixWare with gcc, OpenUNIX 8,
|
---|
1275 | MIPS Linux; shared library support for Irix, HP-UX.
|
---|
1276 | * Add crypto accelerator support for AEP, Baltimore SureWare,
|
---|
1277 | Broadcom and Cryptographic Appliance's keyserver
|
---|
1278 | [in 0.9.6c-engine release].
|
---|
1279 |
|
---|
1280 | ### Major changes between OpenSSL 0.9.6a and OpenSSL 0.9.6b [9 Jul 2001]
|
---|
1281 |
|
---|
1282 | * Security fix: PRNG improvements.
|
---|
1283 | * Security fix: RSA OAEP check.
|
---|
1284 | * Security fix: Reinsert and fix countermeasure to Bleichbacher's
|
---|
1285 | attack.
|
---|
1286 | * MIPS bug fix in BIGNUM.
|
---|
1287 | * Bug fix in "openssl enc".
|
---|
1288 | * Bug fix in X.509 printing routine.
|
---|
1289 | * Bug fix in DSA verification routine and DSA S/MIME verification.
|
---|
1290 | * Bug fix to make PRNG thread-safe.
|
---|
1291 | * Bug fix in RAND_file_name().
|
---|
1292 | * Bug fix in compatibility mode trust settings.
|
---|
1293 | * Bug fix in blowfish EVP.
|
---|
1294 | * Increase default size for BIO buffering filter.
|
---|
1295 | * Compatibility fixes in some scripts.
|
---|
1296 |
|
---|
1297 | ### Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.6a [5 Apr 2001]
|
---|
1298 |
|
---|
1299 | * Security fix: change behavior of OpenSSL to avoid using
|
---|
1300 | environment variables when running as root.
|
---|
1301 | * Security fix: check the result of RSA-CRT to reduce the
|
---|
1302 | possibility of deducing the private key from an incorrectly
|
---|
1303 | calculated signature.
|
---|
1304 | * Security fix: prevent Bleichenbacher's DSA attack.
|
---|
1305 | * Security fix: Zero the premaster secret after deriving the
|
---|
1306 | master secret in DH ciphersuites.
|
---|
1307 | * Reimplement SSL_peek(), which had various problems.
|
---|
1308 | * Compatibility fix: the function des_encrypt() renamed to
|
---|
1309 | des_encrypt1() to avoid clashes with some Unixen libc.
|
---|
1310 | * Bug fixes for Win32, HP/UX and Irix.
|
---|
1311 | * Bug fixes in BIGNUM, SSL, PKCS#7, PKCS#12, X.509, CONF and
|
---|
1312 | memory checking routines.
|
---|
1313 | * Bug fixes for RSA operations in threaded environments.
|
---|
1314 | * Bug fixes in misc. openssl applications.
|
---|
1315 | * Remove a few potential memory leaks.
|
---|
1316 | * Add tighter checks of BIGNUM routines.
|
---|
1317 | * Shared library support has been reworked for generality.
|
---|
1318 | * More documentation.
|
---|
1319 | * New function BN_rand_range().
|
---|
1320 | * Add "-rand" option to openssl s_client and s_server.
|
---|
1321 |
|
---|
1322 | ### Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6 [10 Oct 2000]
|
---|
1323 |
|
---|
1324 | * Some documentation for BIO and SSL libraries.
|
---|
1325 | * Enhanced chain verification using key identifiers.
|
---|
1326 | * New sign and verify options to 'dgst' application.
|
---|
1327 | * Support for DER and PEM encoded messages in 'smime' application.
|
---|
1328 | * New 'rsautl' application, low-level RSA utility.
|
---|
1329 | * MD4 now included.
|
---|
1330 | * Bugfix for SSL rollback padding check.
|
---|
1331 | * Support for external crypto devices [1].
|
---|
1332 | * Enhanced EVP interface.
|
---|
1333 |
|
---|
1334 | [1] The support for external crypto devices is currently a separate
|
---|
1335 | distribution. See the file README-Engine.md.
|
---|
1336 |
|
---|
1337 | ### Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a [1 Apr 2000]
|
---|
1338 |
|
---|
1339 | * Bug fixes for Win32, SuSE Linux, NeXTSTEP and FreeBSD 2.2.8
|
---|
1340 | * Shared library support for HPUX and Solaris-gcc
|
---|
1341 | * Support of Linux/IA64
|
---|
1342 | * Assembler support for Mingw32
|
---|
1343 | * New 'rand' application
|
---|
1344 | * New way to check for existence of algorithms from scripts
|
---|
1345 |
|
---|
1346 | ### Major changes between OpenSSL 0.9.4 and OpenSSL 0.9.5 [25 May 2000]
|
---|
1347 |
|
---|
1348 | * S/MIME support in new 'smime' command
|
---|
1349 | * Documentation for the OpenSSL command line application
|
---|
1350 | * Automation of 'req' application
|
---|
1351 | * Fixes to make s_client, s_server work under Windows
|
---|
1352 | * Support for multiple fieldnames in SPKACs
|
---|
1353 | * New SPKAC command line utility and associated library functions
|
---|
1354 | * Options to allow passwords to be obtained from various sources
|
---|
1355 | * New public key PEM format and options to handle it
|
---|
1356 | * Many other fixes and enhancements to command line utilities
|
---|
1357 | * Usable certificate chain verification
|
---|
1358 | * Certificate purpose checking
|
---|
1359 | * Certificate trust settings
|
---|
1360 | * Support of authority information access extension
|
---|
1361 | * Extensions in certificate requests
|
---|
1362 | * Simplified X509 name and attribute routines
|
---|
1363 | * Initial (incomplete) support for international character sets
|
---|
1364 | * New DH_METHOD, DSA_METHOD and enhanced RSA_METHOD
|
---|
1365 | * Read only memory BIOs and simplified creation function
|
---|
1366 | * TLS/SSL protocol bugfixes: Accept TLS 'client hello' in SSL 3.0
|
---|
1367 | record; allow fragmentation and interleaving of handshake and other
|
---|
1368 | data
|
---|
1369 | * TLS/SSL code now "tolerates" MS SGC
|
---|
1370 | * Work around for Netscape client certificate hang bug
|
---|
1371 | * RSA_NULL option that removes RSA patent code but keeps other
|
---|
1372 | RSA functionality
|
---|
1373 | * Memory leak detection now allows applications to add extra information
|
---|
1374 | via a per-thread stack
|
---|
1375 | * PRNG robustness improved
|
---|
1376 | * EGD support
|
---|
1377 | * BIGNUM library bug fixes
|
---|
1378 | * Faster DSA parameter generation
|
---|
1379 | * Enhanced support for Alpha Linux
|
---|
1380 | * Experimental macOS support
|
---|
1381 |
|
---|
1382 | ### Major changes between OpenSSL 0.9.3 and OpenSSL 0.9.4 [9 Aug 1999]
|
---|
1383 |
|
---|
1384 | * Transparent support for PKCS#8 format private keys: these are used
|
---|
1385 | by several software packages and are more secure than the standard
|
---|
1386 | form
|
---|
1387 | * PKCS#5 v2.0 implementation
|
---|
1388 | * Password callbacks have a new void * argument for application data
|
---|
1389 | * Avoid various memory leaks
|
---|
1390 | * New pipe-like BIO that allows using the SSL library when actual I/O
|
---|
1391 | must be handled by the application (BIO pair)
|
---|
1392 |
|
---|
1393 | ### Major changes between OpenSSL 0.9.2b and OpenSSL 0.9.3 [24 May 1999]
|
---|
1394 |
|
---|
1395 | * Lots of enhancements and cleanups to the Configuration mechanism
|
---|
1396 | * RSA OEAP related fixes
|
---|
1397 | * Added "openssl ca -revoke" option for revoking a certificate
|
---|
1398 | * Source cleanups: const correctness, type-safe stacks and ASN.1 SETs
|
---|
1399 | * Source tree cleanups: removed lots of obsolete files
|
---|
1400 | * Thawte SXNet, certificate policies and CRL distribution points
|
---|
1401 | extension support
|
---|
1402 | * Preliminary (experimental) S/MIME support
|
---|
1403 | * Support for ASN.1 UTF8String and VisibleString
|
---|
1404 | * Full integration of PKCS#12 code
|
---|
1405 | * Sparc assembler bignum implementation, optimized hash functions
|
---|
1406 | * Option to disable selected ciphers
|
---|
1407 |
|
---|
1408 | ### Major changes between OpenSSL 0.9.1c and OpenSSL 0.9.2b [22 Mar 1999]
|
---|
1409 |
|
---|
1410 | * Fixed a security hole related to session resumption
|
---|
1411 | * Fixed RSA encryption routines for the p < q case
|
---|
1412 | * "ALL" in cipher lists now means "everything except NULL ciphers"
|
---|
1413 | * Support for Triple-DES CBCM cipher
|
---|
1414 | * Support of Optimal Asymmetric Encryption Padding (OAEP) for RSA
|
---|
1415 | * First support for new TLSv1 ciphers
|
---|
1416 | * Added a few new BIOs (syslog BIO, reliable BIO)
|
---|
1417 | * Extended support for DSA certificate/keys.
|
---|
1418 | * Extended support for Certificate Signing Requests (CSR)
|
---|
1419 | * Initial support for X.509v3 extensions
|
---|
1420 | * Extended support for compression inside the SSL record layer
|
---|
1421 | * Overhauled Win32 builds
|
---|
1422 | * Cleanups and fixes to the Big Number (BN) library
|
---|
1423 | * Support for ASN.1 GeneralizedTime
|
---|
1424 | * Splitted ASN.1 SETs from SEQUENCEs
|
---|
1425 | * ASN1 and PEM support for Netscape Certificate Sequences
|
---|
1426 | * Overhauled Perl interface
|
---|
1427 | * Lots of source tree cleanups.
|
---|
1428 | * Lots of memory leak fixes.
|
---|
1429 | * Lots of bug fixes.
|
---|
1430 |
|
---|
1431 | ### Major changes between SSLeay 0.9.0b and OpenSSL 0.9.1c [23 Dec 1998]
|
---|
1432 |
|
---|
1433 | * Integration of the popular NO_RSA/NO_DSA patches
|
---|
1434 | * Initial support for compression inside the SSL record layer
|
---|
1435 | * Added BIO proxy and filtering functionality
|
---|
1436 | * Extended Big Number (BN) library
|
---|
1437 | * Added RIPE MD160 message digest
|
---|
1438 | * Added support for RC2/64bit cipher
|
---|
1439 | * Extended ASN.1 parser routines
|
---|
1440 | * Adjustments of the source tree for CVS
|
---|
1441 | * Support for various new platforms
|
---|
1442 |
|
---|
1443 | <!-- Links -->
|
---|
1444 |
|
---|
1445 | [CVE-2023-2650]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-2650
|
---|
1446 | [CVE-2023-1255]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-1255
|
---|
1447 | [CVE-2023-0466]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0466
|
---|
1448 | [CVE-2023-0465]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0465
|
---|
1449 | [CVE-2023-0464]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0464
|
---|
1450 | [CVE-2023-0401]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0401
|
---|
1451 | [CVE-2023-0286]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0286
|
---|
1452 | [CVE-2023-0217]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0217
|
---|
1453 | [CVE-2023-0216]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0216
|
---|
1454 | [CVE-2023-0215]: https://www.openssl.org/news/vulnerabilities.html#CVE-2023-0215
|
---|
1455 | [CVE-2022-4450]: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-4450
|
---|
1456 | [CVE-2022-4304]: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-4304
|
---|
1457 | [CVE-2022-4203]: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-4203
|
---|
1458 | [CVE-2022-3996]: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-3996
|
---|
1459 | [CVE-2022-2274]: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-2274
|
---|
1460 | [CVE-2022-2097]: https://www.openssl.org/news/vulnerabilities.html#CVE-2022-2097
|
---|
1461 | [CVE-2020-1971]: https://www.openssl.org/news/vulnerabilities.html#CVE-2020-1971
|
---|
1462 | [CVE-2020-1967]: https://www.openssl.org/news/vulnerabilities.html#CVE-2020-1967
|
---|
1463 | [CVE-2019-1563]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1563
|
---|
1464 | [CVE-2019-1559]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1559
|
---|
1465 | [CVE-2019-1552]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1552
|
---|
1466 | [CVE-2019-1551]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1551
|
---|
1467 | [CVE-2019-1549]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1549
|
---|
1468 | [CVE-2019-1547]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1547
|
---|
1469 | [CVE-2019-1543]: https://www.openssl.org/news/vulnerabilities.html#CVE-2019-1543
|
---|
1470 | [CVE-2018-5407]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-5407
|
---|
1471 | [CVE-2018-0739]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-0739
|
---|
1472 | [CVE-2018-0737]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-0737
|
---|
1473 | [CVE-2018-0735]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-0735
|
---|
1474 | [CVE-2018-0734]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-0734
|
---|
1475 | [CVE-2018-0733]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-0733
|
---|
1476 | [CVE-2018-0732]: https://www.openssl.org/news/vulnerabilities.html#CVE-2018-0732
|
---|
1477 | [CVE-2017-3738]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3738
|
---|
1478 | [CVE-2017-3737]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3737
|
---|
1479 | [CVE-2017-3736]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3736
|
---|
1480 | [CVE-2017-3735]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3735
|
---|
1481 | [CVE-2017-3733]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3733
|
---|
1482 | [CVE-2017-3732]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3732
|
---|
1483 | [CVE-2017-3731]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3731
|
---|
1484 | [CVE-2017-3730]: https://www.openssl.org/news/vulnerabilities.html#CVE-2017-3730
|
---|
1485 | [CVE-2016-7055]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-7055
|
---|
1486 | [CVE-2016-7054]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-7054
|
---|
1487 | [CVE-2016-7053]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-7053
|
---|
1488 | [CVE-2016-7052]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-7052
|
---|
1489 | [CVE-2016-6309]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6309
|
---|
1490 | [CVE-2016-6308]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6308
|
---|
1491 | [CVE-2016-6307]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6307
|
---|
1492 | [CVE-2016-6306]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6306
|
---|
1493 | [CVE-2016-6305]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6305
|
---|
1494 | [CVE-2016-6304]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6304
|
---|
1495 | [CVE-2016-6303]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6303
|
---|
1496 | [CVE-2016-6302]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-6302
|
---|
1497 | [CVE-2016-2183]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2183
|
---|
1498 | [CVE-2016-2182]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2182
|
---|
1499 | [CVE-2016-2181]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2181
|
---|
1500 | [CVE-2016-2180]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2180
|
---|
1501 | [CVE-2016-2179]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2179
|
---|
1502 | [CVE-2016-2178]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2178
|
---|
1503 | [CVE-2016-2177]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2177
|
---|
1504 | [CVE-2016-2176]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2176
|
---|
1505 | [CVE-2016-2109]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2109
|
---|
1506 | [CVE-2016-2107]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2107
|
---|
1507 | [CVE-2016-2106]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2106
|
---|
1508 | [CVE-2016-2105]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-2105
|
---|
1509 | [CVE-2016-0800]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0800
|
---|
1510 | [CVE-2016-0799]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0799
|
---|
1511 | [CVE-2016-0798]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0798
|
---|
1512 | [CVE-2016-0797]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0797
|
---|
1513 | [CVE-2016-0705]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0705
|
---|
1514 | [CVE-2016-0702]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0702
|
---|
1515 | [CVE-2016-0701]: https://www.openssl.org/news/vulnerabilities.html#CVE-2016-0701
|
---|
1516 | [CVE-2015-3197]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-3197
|
---|
1517 | [CVE-2015-3196]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-3196
|
---|
1518 | [CVE-2015-3195]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-3195
|
---|
1519 | [CVE-2015-3194]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-3194
|
---|
1520 | [CVE-2015-3193]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-3193
|
---|
1521 | [CVE-2015-1793]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1793
|
---|
1522 | [CVE-2015-1792]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1792
|
---|
1523 | [CVE-2015-1791]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1791
|
---|
1524 | [CVE-2015-1790]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1790
|
---|
1525 | [CVE-2015-1789]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1789
|
---|
1526 | [CVE-2015-1788]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1788
|
---|
1527 | [CVE-2015-1787]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-1787
|
---|
1528 | [CVE-2015-0293]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0293
|
---|
1529 | [CVE-2015-0291]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0291
|
---|
1530 | [CVE-2015-0290]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0290
|
---|
1531 | [CVE-2015-0289]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0289
|
---|
1532 | [CVE-2015-0288]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0288
|
---|
1533 | [CVE-2015-0287]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0287
|
---|
1534 | [CVE-2015-0286]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0286
|
---|
1535 | [CVE-2015-0285]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0285
|
---|
1536 | [CVE-2015-0209]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0209
|
---|
1537 | [CVE-2015-0208]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0208
|
---|
1538 | [CVE-2015-0207]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0207
|
---|
1539 | [CVE-2015-0206]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0206
|
---|
1540 | [CVE-2015-0205]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0205
|
---|
1541 | [CVE-2015-0204]: https://www.openssl.org/news/vulnerabilities.html#CVE-2015-0204
|
---|
1542 | [CVE-2014-8275]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-8275
|
---|
1543 | [CVE-2014-5139]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-5139
|
---|
1544 | [CVE-2014-3572]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3572
|
---|
1545 | [CVE-2014-3571]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3571
|
---|
1546 | [CVE-2014-3570]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3570
|
---|
1547 | [CVE-2014-3569]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3569
|
---|
1548 | [CVE-2014-3568]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3568
|
---|
1549 | [CVE-2014-3567]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3567
|
---|
1550 | [CVE-2014-3566]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3566
|
---|
1551 | [CVE-2014-3513]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3513
|
---|
1552 | [CVE-2014-3512]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3512
|
---|
1553 | [CVE-2014-3511]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3511
|
---|
1554 | [CVE-2014-3510]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3510
|
---|
1555 | [CVE-2014-3509]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3509
|
---|
1556 | [CVE-2014-3508]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3508
|
---|
1557 | [CVE-2014-3507]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3507
|
---|
1558 | [CVE-2014-3506]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3506
|
---|
1559 | [CVE-2014-3505]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3505
|
---|
1560 | [CVE-2014-3470]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-3470
|
---|
1561 | [CVE-2014-0224]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-0224
|
---|
1562 | [CVE-2014-0221]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-0221
|
---|
1563 | [CVE-2014-0198]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-0198
|
---|
1564 | [CVE-2014-0195]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-0195
|
---|
1565 | [CVE-2014-0160]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-0160
|
---|
1566 | [CVE-2014-0076]: https://www.openssl.org/news/vulnerabilities.html#CVE-2014-0076
|
---|
1567 | [CVE-2013-6450]: https://www.openssl.org/news/vulnerabilities.html#CVE-2013-6450
|
---|
1568 | [CVE-2013-6449]: https://www.openssl.org/news/vulnerabilities.html#CVE-2013-6449
|
---|
1569 | [CVE-2013-4353]: https://www.openssl.org/news/vulnerabilities.html#CVE-2013-4353
|
---|
1570 | [CVE-2013-0169]: https://www.openssl.org/news/vulnerabilities.html#CVE-2013-0169
|
---|
1571 | [CVE-2013-0166]: https://www.openssl.org/news/vulnerabilities.html#CVE-2013-0166
|
---|
1572 | [CVE-2012-2686]: https://www.openssl.org/news/vulnerabilities.html#CVE-2012-2686
|
---|
1573 | [CVE-2012-2333]: https://www.openssl.org/news/vulnerabilities.html#CVE-2012-2333
|
---|
1574 | [CVE-2012-2110]: https://www.openssl.org/news/vulnerabilities.html#CVE-2012-2110
|
---|
1575 | [CVE-2012-0884]: https://www.openssl.org/news/vulnerabilities.html#CVE-2012-0884
|
---|
1576 | [CVE-2012-0050]: https://www.openssl.org/news/vulnerabilities.html#CVE-2012-0050
|
---|
1577 | [CVE-2012-0027]: https://www.openssl.org/news/vulnerabilities.html#CVE-2012-0027
|
---|
1578 | [CVE-2011-4619]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-4619
|
---|
1579 | [CVE-2011-4577]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-4577
|
---|
1580 | [CVE-2011-4576]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-4576
|
---|
1581 | [CVE-2011-4108]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-4108
|
---|
1582 | [CVE-2011-3210]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-3210
|
---|
1583 | [CVE-2011-3207]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-3207
|
---|
1584 | [CVE-2011-0014]: https://www.openssl.org/news/vulnerabilities.html#CVE-2011-0014
|
---|
1585 | [CVE-2010-5298]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-5298
|
---|
1586 | [CVE-2010-4252]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-4252
|
---|
1587 | [CVE-2010-4180]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-4180
|
---|
1588 | [CVE-2010-3864]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-3864
|
---|
1589 | [CVE-2010-2939]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-2939
|
---|
1590 | [CVE-2010-1633]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-1633
|
---|
1591 | [CVE-2010-0740]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-0740
|
---|
1592 | [CVE-2010-0433]: https://www.openssl.org/news/vulnerabilities.html#CVE-2010-0433
|
---|
1593 | [CVE-2009-3555]: https://www.openssl.org/news/vulnerabilities.html#CVE-2009-3555
|
---|
1594 | [CVE-2009-0789]: https://www.openssl.org/news/vulnerabilities.html#CVE-2009-0789
|
---|
1595 | [CVE-2009-0591]: https://www.openssl.org/news/vulnerabilities.html#CVE-2009-0591
|
---|
1596 | [CVE-2009-0590]: https://www.openssl.org/news/vulnerabilities.html#CVE-2009-0590
|
---|
1597 | [CVE-2008-5077]: https://www.openssl.org/news/vulnerabilities.html#CVE-2008-5077
|
---|
1598 | [CVE-2006-4343]: https://www.openssl.org/news/vulnerabilities.html#CVE-2006-4343
|
---|
1599 | [CVE-2006-4339]: https://www.openssl.org/news/vulnerabilities.html#CVE-2006-4339
|
---|
1600 | [CVE-2006-3737]: https://www.openssl.org/news/vulnerabilities.html#CVE-2006-3737
|
---|
1601 | [CVE-2006-2940]: https://www.openssl.org/news/vulnerabilities.html#CVE-2006-2940
|
---|
1602 | [CVE-2006-2937]: https://www.openssl.org/news/vulnerabilities.html#CVE-2006-2937
|
---|
1603 | [CVE-2005-2969]: https://www.openssl.org/news/vulnerabilities.html#CVE-2005-2969
|
---|