From 346601bc3255c6728785fedfe27d9f923a33afaf Mon Sep 17 00:00:00 2001
From: Bodo Möller <bodo@openssl.org>
Date: Thu, 3 Feb 2011 10:42:00 +0000
Subject: CVE-2010-4180 fix (from OpenSSL_1_0_0-stable)

---
 NEWS | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'NEWS')

diff --git a/NEWS b/NEWS
index 3a787ea06c..139c1e02b4 100644
--- a/NEWS
+++ b/NEWS
@@ -5,6 +5,20 @@
   This file gives a brief overview of the major changes between each OpenSSL
   release. For more details please read the CHANGES file.
 
+  Major changes between OpenSSL 1.0.0b and OpenSSL 1.0.0c:
+
+      o Fix for security issue CVE-2010-4180
+      o Fix for CVE-2010-4252
+      o Fix mishandling of absent EC point format extension.
+      o Fix various platform compilation issues.
+      o Corrected fix for security issue CVE-2010-3864.
+
+  Major changes between OpenSSL 1.0.0a and OpenSSL 1.0.0b:
+
+      o Fix for security issue CVE-2010-3864.
+      o Fix for CVE-2010-2939
+      o Fix WIN32 build system for GOST ENGINE.
+
   Major changes between OpenSSL 1.0.0 and OpenSSL 1.0.0a:
 
       o Fix for security issue CVE-2010-1633.
-- 
cgit v1.2.3