diff options
author | Rich Salz <rsalz@openssl.org> | 2016-08-18 08:56:42 -0400 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2016-08-24 14:05:52 +0100 |
commit | ef28891bab7054667f2f6739f6d376c38b3ca1cc (patch) | |
tree | f0836691169fc07d0ee93b7bd15496a87b9b65c0 /CHANGES | |
parent | d33726b92e09605a088369d0e01c99d138c0524f (diff) | |
download | openssl-ef28891bab7054667f2f6739f6d376c38b3ca1cc.tar.gz |
Put DES into "not default" category.
Add CVE to CHANGES
Reviewed-by: Emilia Käsper <emilia@openssl.org>
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 5 |
1 files changed, 3 insertions, 2 deletions
@@ -4,8 +4,9 @@ Changes between 1.0.2h and 1.1.0 [xx XXX xxxx] - *) Because of the SWEET32 attack, 3DES cipher suites have been disabled by - default like RC4. See the RC4 item below to re-enable both. + *) To mitigate the SWEET32 attack (CVE-2016-2183), 3DES cipher suites + have been disabled by default and removed from DEFAULT, just like RC4. + See the RC4 item below to re-enable both. [Rich Salz] *) The method for finding the storage location for the Windows RAND seed file |