]>
Commit | Line | Data |
---|---|---|
3b52c2e7 | 1 | |
5f8e6c50 DMSP |
2 | NEWS |
3 | ==== | |
4 | ||
5 | This file gives a brief overview of the major changes between each OpenSSL | |
6 | release. For more details please read the CHANGES file. | |
7 | ||
8 | Major changes between OpenSSL 1.1.1 and OpenSSL 3.0.0 [under development] | |
9 | ---------------------------------------------------------------------- | |
10 | ||
11 | * enable-crypto-mdebug and enable-crypto-mdebug-backtrace were mostly | |
12 | disabled; the project uses address sanitize/leak-detect instead. | |
13 | * Added OSSL_SERIALIZER, a generic serializer API. | |
14 | * Added error raising macros, ERR_raise() and ERR_raise_data(). | |
15 | * Deprecated ERR_put_error(). | |
16 | * Added OSSL_PROVIDER_available(), to check provider availibility. | |
17 | * Added 'openssl mac' that uses the EVP_MAC API. | |
18 | * Added 'openssl kdf' that uses the EVP_KDF API. | |
19 | * Add OPENSSL_info() and 'openssl info' to get built-in data. | |
20 | * Add support for enabling instrumentation through trace and debug | |
21 | output. | |
22 | * Changed our version number scheme and set the next major release to | |
23 | 3.0.0 | |
24 | * Added EVP_MAC, an EVP layer MAC API, and a generic EVP_PKEY to EVP_MAC | |
25 | bridge. | |
26 | * Removed the heartbeat message in DTLS feature. | |
27 | * Added EVP_KDF, an EVP layer KDF API, and a generic EVP_PKEY to EVP_KDF | |
28 | bridge. | |
29 | ||
30 | Major changes between OpenSSL 1.1.1 and OpenSSL 1.1.1a [20 Nov 2018] | |
31 | ---------------------------------------------------------------------- | |
32 | ||
33 | * Timing vulnerability in DSA signature generation (CVE-2018-0734) | |
34 | * Timing vulnerability in ECDSA signature generation (CVE-2018-0735) | |
35 | ||
36 | Major changes between OpenSSL 1.1.0i and OpenSSL 1.1.1 [11 Sep 2018] | |
37 | ---------------------------------------------------------------------- | |
38 | ||
39 | * Support for TLSv1.3 added (see https://wiki.openssl.org/index.php/TLS1.3 | |
40 | for further important information). The TLSv1.3 implementation includes: | |
41 | * Fully compliant implementation of RFC8446 (TLSv1.3) on by default | |
42 | * Early data (0-RTT) | |
43 | * Post-handshake authentication and key update | |
44 | * Middlebox Compatibility Mode | |
45 | * TLSv1.3 PSKs | |
46 | * Support for all five RFC8446 ciphersuites | |
47 | * RSA-PSS signature algorithms (backported to TLSv1.2) | |
48 | * Configurable session ticket support | |
49 | * Stateless server support | |
50 | * Rewrite of the packet construction code for "safer" packet handling | |
51 | * Rewrite of the extension handling code | |
52 | * Complete rewrite of the OpenSSL random number generator to introduce the | |
53 | following capabilities | |
54 | * The default RAND method now utilizes an AES-CTR DRBG according to | |
55 | NIST standard SP 800-90Ar1. | |
56 | * Support for multiple DRBG instances with seed chaining. | |
57 | * There is a public and private DRBG instance. | |
58 | * The DRBG instances are fork-safe. | |
59 | * Keep all global DRBG instances on the secure heap if it is enabled. | |
60 | * The public and private DRBG instance are per thread for lock free | |
61 | operation | |
62 | * Support for various new cryptographic algorithms including: | |
63 | * SHA3 | |
64 | * SHA512/224 and SHA512/256 | |
65 | * EdDSA (both Ed25519 and Ed448) including X509 and TLS support | |
66 | * X448 (adding to the existing X25519 support in 1.1.0) | |
67 | * Multi-prime RSA | |
68 | * SM2 | |
69 | * SM3 | |
70 | * SM4 | |
71 | * SipHash | |
72 | * ARIA (including TLS support) | |
73 | * Significant Side-Channel attack security improvements | |
74 | * Add a new ClientHello callback to provide the ability to adjust the SSL | |
75 | object at an early stage. | |
76 | * Add 'Maximum Fragment Length' TLS extension negotiation and support | |
77 | * A new STORE module, which implements a uniform and URI based reader of | |
78 | stores that can contain keys, certificates, CRLs and numerous other | |
79 | objects. | |
80 | * Move the display of configuration data to configdata.pm. | |
81 | * Allow GNU style "make variables" to be used with Configure. | |
82 | * Claim the namespaces OSSL and OPENSSL, represented as symbol prefixes | |
83 | * Rewrite of devcrypto engine | |
84 | ||
85 | Major changes between OpenSSL 1.1.0h and OpenSSL 1.1.0i [under development] | |
86 | ---------------------------------------------------------------------- | |
87 | ||
88 | * Client DoS due to large DH parameter (CVE-2018-0732) | |
89 | * Cache timing vulnerability in RSA Key Generation (CVE-2018-0737) | |
90 | ||
91 | Major changes between OpenSSL 1.1.0g and OpenSSL 1.1.0h [under development] | |
92 | ---------------------------------------------------------------------- | |
93 | ||
94 | * Constructed ASN.1 types with a recursive definition could exceed the | |
95 | stack (CVE-2018-0739) | |
96 | * Incorrect CRYPTO_memcmp on HP-UX PA-RISC (CVE-2018-0733) | |
97 | * rsaz_1024_mul_avx2 overflow bug on x86_64 (CVE-2017-3738) | |
98 | ||
99 | Major changes between OpenSSL 1.1.0f and OpenSSL 1.1.0g [2 Nov 2017] | |
100 | ---------------------------------------------------------------------- | |
101 | ||
102 | * bn_sqrx8x_internal carry bug on x86_64 (CVE-2017-3736) | |
103 | * Malformed X.509 IPAddressFamily could cause OOB read (CVE-2017-3735) | |
104 | ||
105 | Major changes between OpenSSL 1.1.0e and OpenSSL 1.1.0f [25 May 2017] | |
106 | ---------------------------------------------------------------------- | |
107 | ||
108 | * config now recognises 64-bit mingw and chooses mingw64 instead of mingw | |
109 | ||
110 | Major changes between OpenSSL 1.1.0d and OpenSSL 1.1.0e [16 Feb 2017] | |
111 | ---------------------------------------------------------------------- | |
112 | ||
113 | * Encrypt-Then-Mac renegotiation crash (CVE-2017-3733) | |
114 | ||
115 | Major changes between OpenSSL 1.1.0c and OpenSSL 1.1.0d [26 Jan 2017] | |
116 | ---------------------------------------------------------------------- | |
117 | ||
118 | * Truncated packet could crash via OOB read (CVE-2017-3731) | |
119 | * Bad (EC)DHE parameters cause a client crash (CVE-2017-3730) | |
120 | * BN_mod_exp may produce incorrect results on x86_64 (CVE-2017-3732) | |
121 | ||
122 | Major changes between OpenSSL 1.1.0b and OpenSSL 1.1.0c [10 Nov 2016] | |
123 | ---------------------------------------------------------------------- | |
124 | ||
125 | * ChaCha20/Poly1305 heap-buffer-overflow (CVE-2016-7054) | |
126 | * CMS Null dereference (CVE-2016-7053) | |
127 | * Montgomery multiplication may produce incorrect results (CVE-2016-7055) | |
128 | ||
129 | Major changes between OpenSSL 1.1.0a and OpenSSL 1.1.0b [26 Sep 2016] | |
130 | ---------------------------------------------------------------------- | |
131 | ||
132 | * Fix Use After Free for large message sizes (CVE-2016-6309) | |
133 | ||
134 | Major changes between OpenSSL 1.1.0 and OpenSSL 1.1.0a [22 Sep 2016] | |
135 | ---------------------------------------------------------------------- | |
136 | ||
137 | * OCSP Status Request extension unbounded memory growth (CVE-2016-6304) | |
138 | * SSL_peek() hang on empty record (CVE-2016-6305) | |
139 | * Excessive allocation of memory in tls_get_message_header() | |
140 | (CVE-2016-6307) | |
141 | * Excessive allocation of memory in dtls1_preprocess_fragment() | |
142 | (CVE-2016-6308) | |
143 | ||
144 | Major changes between OpenSSL 1.0.2h and OpenSSL 1.1.0 [25 Aug 2016] | |
145 | ---------------------------------------------------------------------- | |
146 | ||
147 | * Copyright text was shrunk to a boilerplate that points to the license | |
148 | * "shared" builds are now the default when possible | |
149 | * Added support for "pipelining" | |
150 | * Added the AFALG engine | |
151 | * New threading API implemented | |
152 | * Support for ChaCha20 and Poly1305 added to libcrypto and libssl | |
153 | * Support for extended master secret | |
154 | * CCM ciphersuites | |
155 | * Reworked test suite, now based on perl, Test::Harness and Test::More | |
156 | * *Most* libcrypto and libssl public structures were made opaque, | |
157 | including: | |
158 | BIGNUM and associated types, EC_KEY and EC_KEY_METHOD, | |
159 | DH and DH_METHOD, DSA and DSA_METHOD, RSA and RSA_METHOD, | |
160 | BIO and BIO_METHOD, EVP_MD_CTX, EVP_MD, EVP_CIPHER_CTX, | |
161 | EVP_CIPHER, EVP_PKEY and associated types, HMAC_CTX, | |
162 | X509, X509_CRL, X509_OBJECT, X509_STORE_CTX, X509_STORE, | |
163 | X509_LOOKUP, X509_LOOKUP_METHOD | |
164 | * libssl internal structures made opaque | |
165 | * SSLv2 support removed | |
166 | * Kerberos ciphersuite support removed | |
167 | * RC4 removed from DEFAULT ciphersuites in libssl | |
168 | * 40 and 56 bit cipher support removed from libssl | |
169 | * All public header files moved to include/openssl, no more symlinking | |
170 | * SSL/TLS state machine, version negotiation and record layer rewritten | |
171 | * EC revision: now operations use new EC_KEY_METHOD. | |
172 | * Support for OCB mode added to libcrypto | |
173 | * Support for asynchronous crypto operations added to libcrypto and libssl | |
174 | * Deprecated interfaces can now be disabled at build time either | |
175 | relative to the latest release via the "no-deprecated" Configure | |
176 | argument, or via the "--api=1.1.0|1.0.0|0.9.8" option. | |
177 | * Application software can be compiled with -DOPENSSL_API_COMPAT=version | |
178 | to ensure that features deprecated in that version are not exposed. | |
179 | * Support for RFC6698/RFC7671 DANE TLSA peer authentication | |
180 | * Change of Configure to use --prefix as the main installation | |
181 | directory location rather than --openssldir. The latter becomes | |
182 | the directory for certs, private key and openssl.cnf exclusively. | |
183 | * Reworked BIO networking library, with full support for IPv6. | |
184 | * New "unified" build system | |
185 | * New security levels | |
186 | * Support for scrypt algorithm | |
187 | * Support for X25519 | |
188 | * Extended SSL_CONF support using configuration files | |
189 | * KDF algorithm support. Implement TLS PRF as a KDF. | |
190 | * Support for Certificate Transparency | |
191 | * HKDF support. | |
192 | ||
193 | Major changes between OpenSSL 1.0.2g and OpenSSL 1.0.2h [3 May 2016] | |
194 | ---------------------------------------------------------------------- | |
195 | ||
196 | * Prevent padding oracle in AES-NI CBC MAC check (CVE-2016-2107) | |
197 | * Fix EVP_EncodeUpdate overflow (CVE-2016-2105) | |
198 | * Fix EVP_EncryptUpdate overflow (CVE-2016-2106) | |
199 | * Prevent ASN.1 BIO excessive memory allocation (CVE-2016-2109) | |
200 | * EBCDIC overread (CVE-2016-2176) | |
201 | * Modify behavior of ALPN to invoke callback after SNI/servername | |
202 | callback, such that updates to the SSL_CTX affect ALPN. | |
203 | * Remove LOW from the DEFAULT cipher list. This removes singles DES from | |
204 | the default. | |
205 | * Only remove the SSLv2 methods with the no-ssl2-method option. | |
206 | ||
207 | Major changes between OpenSSL 1.0.2f and OpenSSL 1.0.2g [1 Mar 2016] | |
208 | ---------------------------------------------------------------------- | |
209 | ||
210 | * Disable weak ciphers in SSLv3 and up in default builds of OpenSSL. | |
211 | * Disable SSLv2 default build, default negotiation and weak ciphers | |
212 | (CVE-2016-0800) | |
213 | * Fix a double-free in DSA code (CVE-2016-0705) | |
214 | * Disable SRP fake user seed to address a server memory leak | |
215 | (CVE-2016-0798) | |
216 | * Fix BN_hex2bn/BN_dec2bn NULL pointer deref/heap corruption | |
217 | (CVE-2016-0797) | |
218 | * Fix memory issues in BIO_*printf functions (CVE-2016-0799) | |
219 | * Fix side channel attack on modular exponentiation (CVE-2016-0702) | |
220 | ||
221 | Major changes between OpenSSL 1.0.2e and OpenSSL 1.0.2f [28 Jan 2016] | |
222 | ---------------------------------------------------------------------- | |
223 | ||
224 | * DH small subgroups (CVE-2016-0701) | |
225 | * SSLv2 doesn't block disabled ciphers (CVE-2015-3197) | |
226 | ||
227 | Major changes between OpenSSL 1.0.2d and OpenSSL 1.0.2e [3 Dec 2015] | |
228 | ---------------------------------------------------------------------- | |
229 | ||
230 | * BN_mod_exp may produce incorrect results on x86_64 (CVE-2015-3193) | |
231 | * Certificate verify crash with missing PSS parameter (CVE-2015-3194) | |
232 | * X509_ATTRIBUTE memory leak (CVE-2015-3195) | |
233 | * Rewrite EVP_DecodeUpdate (base64 decoding) to fix several bugs | |
234 | * In DSA_generate_parameters_ex, if the provided seed is too short, | |
235 | return an error | |
236 | ||
237 | Major changes between OpenSSL 1.0.2c and OpenSSL 1.0.2d [9 Jul 2015] | |
238 | ---------------------------------------------------------------------- | |
239 | ||
240 | * Alternate chains certificate forgery (CVE-2015-1793) | |
241 | * Race condition handling PSK identify hint (CVE-2015-3196) | |
242 | ||
243 | Major changes between OpenSSL 1.0.2b and OpenSSL 1.0.2c [12 Jun 2015] | |
244 | ---------------------------------------------------------------------- | |
245 | ||
246 | * Fix HMAC ABI incompatibility | |
247 | ||
248 | Major changes between OpenSSL 1.0.2a and OpenSSL 1.0.2b [11 Jun 2015] | |
249 | ---------------------------------------------------------------------- | |
250 | ||
251 | * Malformed ECParameters causes infinite loop (CVE-2015-1788) | |
252 | * Exploitable out-of-bounds read in X509_cmp_time (CVE-2015-1789) | |
253 | * PKCS7 crash with missing EnvelopedContent (CVE-2015-1790) | |
254 | * CMS verify infinite loop with unknown hash function (CVE-2015-1792) | |
255 | * Race condition handling NewSessionTicket (CVE-2015-1791) | |
256 | ||
257 | Major changes between OpenSSL 1.0.2 and OpenSSL 1.0.2a [19 Mar 2015] | |
258 | ---------------------------------------------------------------------- | |
259 | ||
260 | * OpenSSL 1.0.2 ClientHello sigalgs DoS fix (CVE-2015-0291) | |
261 | * Multiblock corrupted pointer fix (CVE-2015-0290) | |
262 | * Segmentation fault in DTLSv1_listen fix (CVE-2015-0207) | |
263 | * Segmentation fault in ASN1_TYPE_cmp fix (CVE-2015-0286) | |
264 | * Segmentation fault for invalid PSS parameters fix (CVE-2015-0208) | |
265 | * ASN.1 structure reuse memory corruption fix (CVE-2015-0287) | |
266 | * PKCS7 NULL pointer dereferences fix (CVE-2015-0289) | |
267 | * DoS via reachable assert in SSLv2 servers fix (CVE-2015-0293) | |
268 | * Empty CKE with client auth and DHE fix (CVE-2015-1787) | |
269 | * Handshake with unseeded PRNG fix (CVE-2015-0285) | |
270 | * Use After Free following d2i_ECPrivatekey error fix (CVE-2015-0209) | |
271 | * X509_to_X509_REQ NULL pointer deref fix (CVE-2015-0288) | |
272 | * Removed the export ciphers from the DEFAULT ciphers | |
273 | ||
274 | Major changes between OpenSSL 1.0.1l and OpenSSL 1.0.2 [22 Jan 2015]: | |
275 | ---------------------------------------------------------------------- | |
276 | ||
277 | * Suite B support for TLS 1.2 and DTLS 1.2 | |
278 | * Support for DTLS 1.2 | |
279 | * TLS automatic EC curve selection. | |
280 | * API to set TLS supported signature algorithms and curves | |
281 | * SSL_CONF configuration API. | |
282 | * TLS Brainpool support. | |
283 | * ALPN support. | |
284 | * CMS support for RSA-PSS, RSA-OAEP, ECDH and X9.42 DH. | |
285 | ||
286 | Major changes between OpenSSL 1.0.1k and OpenSSL 1.0.1l [15 Jan 2015] | |
287 | ---------------------------------------------------------------------- | |
288 | ||
289 | * Build fixes for the Windows and OpenVMS platforms | |
290 | ||
291 | Major changes between OpenSSL 1.0.1j and OpenSSL 1.0.1k [8 Jan 2015] | |
292 | ---------------------------------------------------------------------- | |
293 | ||
294 | * Fix for CVE-2014-3571 | |
295 | * Fix for CVE-2015-0206 | |
296 | * Fix for CVE-2014-3569 | |
297 | * Fix for CVE-2014-3572 | |
298 | * Fix for CVE-2015-0204 | |
299 | * Fix for CVE-2015-0205 | |
300 | * Fix for CVE-2014-8275 | |
301 | * Fix for CVE-2014-3570 | |
302 | ||
303 | Major changes between OpenSSL 1.0.1i and OpenSSL 1.0.1j [15 Oct 2014] | |
304 | ---------------------------------------------------------------------- | |
305 | ||
306 | * Fix for CVE-2014-3513 | |
307 | * Fix for CVE-2014-3567 | |
308 | * Mitigation for CVE-2014-3566 (SSL protocol vulnerability) | |
309 | * Fix for CVE-2014-3568 | |
310 | ||
311 | Major changes between OpenSSL 1.0.1h and OpenSSL 1.0.1i [6 Aug 2014] | |
312 | ---------------------------------------------------------------------- | |
313 | ||
314 | * Fix for CVE-2014-3512 | |
315 | * Fix for CVE-2014-3511 | |
316 | * Fix for CVE-2014-3510 | |
317 | * Fix for CVE-2014-3507 | |
318 | * Fix for CVE-2014-3506 | |
319 | * Fix for CVE-2014-3505 | |
320 | * Fix for CVE-2014-3509 | |
321 | * Fix for CVE-2014-5139 | |
322 | * Fix for CVE-2014-3508 | |
323 | ||
324 | Major changes between OpenSSL 1.0.1g and OpenSSL 1.0.1h [5 Jun 2014] | |
325 | ---------------------------------------------------------------------- | |
326 | ||
327 | * Fix for CVE-2014-0224 | |
328 | * Fix for CVE-2014-0221 | |
329 | * Fix for CVE-2014-0198 | |
330 | * Fix for CVE-2014-0195 | |
331 | * Fix for CVE-2014-3470 | |
332 | * Fix for CVE-2010-5298 | |
333 | ||
334 | Major changes between OpenSSL 1.0.1f and OpenSSL 1.0.1g [7 Apr 2014] | |
335 | ---------------------------------------------------------------------- | |
336 | ||
337 | * Fix for CVE-2014-0160 | |
338 | * Add TLS padding extension workaround for broken servers. | |
339 | * Fix for CVE-2014-0076 | |
340 | ||
341 | Major changes between OpenSSL 1.0.1e and OpenSSL 1.0.1f [6 Jan 2014] | |
342 | ---------------------------------------------------------------------- | |
343 | ||
344 | * Don't include gmt_unix_time in TLS server and client random values | |
345 | * Fix for TLS record tampering bug CVE-2013-4353 | |
346 | * Fix for TLS version checking bug CVE-2013-6449 | |
347 | * Fix for DTLS retransmission bug CVE-2013-6450 | |
348 | ||
349 | Major changes between OpenSSL 1.0.1d and OpenSSL 1.0.1e [11 Feb 2013]: | |
350 | ---------------------------------------------------------------------- | |
351 | ||
352 | * Corrected fix for CVE-2013-0169 | |
353 | ||
354 | Major changes between OpenSSL 1.0.1c and OpenSSL 1.0.1d [4 Feb 2013]: | |
355 | ---------------------------------------------------------------------- | |
356 | ||
357 | * Fix renegotiation in TLS 1.1, 1.2 by using the correct TLS version. | |
358 | * Include the fips configuration module. | |
359 | * Fix OCSP bad key DoS attack CVE-2013-0166 | |
360 | * Fix for SSL/TLS/DTLS CBC plaintext recovery attack CVE-2013-0169 | |
361 | * Fix for TLS AESNI record handling flaw CVE-2012-2686 | |
362 | ||
363 | Major changes between OpenSSL 1.0.1b and OpenSSL 1.0.1c [10 May 2012]: | |
364 | ---------------------------------------------------------------------- | |
365 | ||
366 | * Fix TLS/DTLS record length checking bug CVE-2012-2333 | |
367 | * Don't attempt to use non-FIPS composite ciphers in FIPS mode. | |
368 | ||
369 | Major changes between OpenSSL 1.0.1a and OpenSSL 1.0.1b [26 Apr 2012]: | |
370 | ---------------------------------------------------------------------- | |
371 | ||
372 | * Fix compilation error on non-x86 platforms. | |
373 | * Make FIPS capable OpenSSL ciphers work in non-FIPS mode. | |
374 | * Fix SSL_OP_NO_TLSv1_1 clash with SSL_OP_ALL in OpenSSL 1.0.0 | |
375 | ||
376 | Major changes between OpenSSL 1.0.1 and OpenSSL 1.0.1a [19 Apr 2012]: | |
377 | ---------------------------------------------------------------------- | |
378 | ||
379 | * Fix for ASN1 overflow bug CVE-2012-2110 | |
380 | * Workarounds for some servers that hang on long client hellos. | |
381 | * Fix SEGV in AES code. | |
382 | ||
383 | Major changes between OpenSSL 1.0.0h and OpenSSL 1.0.1 [14 Mar 2012]: | |
384 | ---------------------------------------------------------------------- | |
385 | ||
386 | * TLS/DTLS heartbeat support. | |
387 | * SCTP support. | |
388 | * RFC 5705 TLS key material exporter. | |
389 | * RFC 5764 DTLS-SRTP negotiation. | |
390 | * Next Protocol Negotiation. | |
391 | * PSS signatures in certificates, requests and CRLs. | |
392 | * Support for password based recipient info for CMS. | |
393 | * Support TLS v1.2 and TLS v1.1. | |
394 | * Preliminary FIPS capability for unvalidated 2.0 FIPS module. | |
395 | * SRP support. | |
396 | ||
397 | Major changes between OpenSSL 1.0.0g and OpenSSL 1.0.0h [12 Mar 2012]: | |
398 | ---------------------------------------------------------------------- | |
399 | ||
400 | * Fix for CMS/PKCS#7 MMA CVE-2012-0884 | |
401 | * Corrected fix for CVE-2011-4619 | |
402 | * Various DTLS fixes. | |
403 | ||
404 | Major changes between OpenSSL 1.0.0f and OpenSSL 1.0.0g [18 Jan 2012]: | |
405 | ---------------------------------------------------------------------- | |
406 | ||
407 | * Fix for DTLS DoS issue CVE-2012-0050 | |
408 | ||
409 | Major changes between OpenSSL 1.0.0e and OpenSSL 1.0.0f [4 Jan 2012]: | |
410 | ---------------------------------------------------------------------- | |
411 | ||
412 | * Fix for DTLS plaintext recovery attack CVE-2011-4108 | |
413 | * Clear block padding bytes of SSL 3.0 records CVE-2011-4576 | |
414 | * Only allow one SGC handshake restart for SSL/TLS CVE-2011-4619 | |
415 | * Check parameters are not NULL in GOST ENGINE CVE-2012-0027 | |
416 | * Check for malformed RFC3779 data CVE-2011-4577 | |
417 | ||
418 | Major changes between OpenSSL 1.0.0d and OpenSSL 1.0.0e [6 Sep 2011]: | |
419 | ---------------------------------------------------------------------- | |
420 | ||
421 | * Fix for CRL vulnerability issue CVE-2011-3207 | |
422 | * Fix for ECDH crashes CVE-2011-3210 | |
423 | * Protection against EC timing attacks. | |
424 | * Support ECDH ciphersuites for certificates using SHA2 algorithms. | |
425 | * Various DTLS fixes. | |
426 | ||
427 | Major changes between OpenSSL 1.0.0c and OpenSSL 1.0.0d [8 Feb 2011]: | |
428 | ---------------------------------------------------------------------- | |
429 | ||
430 | * Fix for security issue CVE-2011-0014 | |
367eab2f | 431 | |
5f8e6c50 DMSP |
432 | Major changes between OpenSSL 1.0.0b and OpenSSL 1.0.0c [2 Dec 2010]: |
433 | ---------------------------------------------------------------------- | |
434 | ||
435 | * Fix for security issue CVE-2010-4180 | |
436 | * Fix for CVE-2010-4252 | |
437 | * Fix mishandling of absent EC point format extension. | |
438 | * Fix various platform compilation issues. | |
439 | * Corrected fix for security issue CVE-2010-3864. | |
440 | ||
441 | Major changes between OpenSSL 1.0.0a and OpenSSL 1.0.0b [16 Nov 2010]: | |
442 | ---------------------------------------------------------------------- | |
443 | ||
444 | * Fix for security issue CVE-2010-3864. | |
445 | * Fix for CVE-2010-2939 | |
446 | * Fix WIN32 build system for GOST ENGINE. | |
447 | ||
448 | Major changes between OpenSSL 1.0.0 and OpenSSL 1.0.0a [1 Jun 2010]: | |
449 | ---------------------------------------------------------------------- | |
450 | ||
451 | * Fix for security issue CVE-2010-1633. | |
452 | * GOST MAC and CFB fixes. | |
453 | ||
454 | Major changes between OpenSSL 0.9.8n and OpenSSL 1.0.0 [29 Mar 2010]: | |
455 | ---------------------------------------------------------------------- | |
456 | ||
457 | * RFC3280 path validation: sufficient to process PKITS tests. | |
458 | * Integrated support for PVK files and keyblobs. | |
459 | * Change default private key format to PKCS#8. | |
460 | * CMS support: able to process all examples in RFC4134 | |
461 | * Streaming ASN1 encode support for PKCS#7 and CMS. | |
462 | * Multiple signer and signer add support for PKCS#7 and CMS. | |
463 | * ASN1 printing support. | |
464 | * Whirlpool hash algorithm added. | |
465 | * RFC3161 time stamp support. | |
466 | * New generalised public key API supporting ENGINE based algorithms. | |
467 | * New generalised public key API utilities. | |
468 | * New ENGINE supporting GOST algorithms. | |
469 | * SSL/TLS GOST ciphersuite support. | |
470 | * PKCS#7 and CMS GOST support. | |
471 | * RFC4279 PSK ciphersuite support. | |
472 | * Supported points format extension for ECC ciphersuites. | |
473 | * ecdsa-with-SHA224/256/384/512 signature types. | |
474 | * dsa-with-SHA224 and dsa-with-SHA256 signature types. | |
475 | * Opaque PRF Input TLS extension support. | |
476 | * Updated time routines to avoid OS limitations. | |
477 | ||
478 | Major changes between OpenSSL 0.9.8m and OpenSSL 0.9.8n [24 Mar 2010]: | |
479 | ---------------------------------------------------------------------- | |
480 | ||
481 | * CFB cipher definition fixes. | |
482 | * Fix security issues CVE-2010-0740 and CVE-2010-0433. | |
483 | ||
484 | Major changes between OpenSSL 0.9.8l and OpenSSL 0.9.8m [25 Feb 2010]: | |
485 | ---------------------------------------------------------------------- | |
486 | ||
487 | * Cipher definition fixes. | |
488 | * Workaround for slow RAND_poll() on some WIN32 versions. | |
489 | * Remove MD2 from algorithm tables. | |
490 | * SPKAC handling fixes. | |
491 | * Support for RFC5746 TLS renegotiation extension. | |
492 | * Compression memory leak fixed. | |
493 | * Compression session resumption fixed. | |
494 | * Ticket and SNI coexistence fixes. | |
495 | * Many fixes to DTLS handling. | |
496 | ||
497 | Major changes between OpenSSL 0.9.8k and OpenSSL 0.9.8l [5 Nov 2009]: | |
498 | ---------------------------------------------------------------------- | |
499 | ||
500 | * Temporary work around for CVE-2009-3555: disable renegotiation. | |
501 | ||
502 | Major changes between OpenSSL 0.9.8j and OpenSSL 0.9.8k [25 Mar 2009]: | |
503 | ---------------------------------------------------------------------- | |
504 | ||
505 | * Fix various build issues. | |
506 | * Fix security issues (CVE-2009-0590, CVE-2009-0591, CVE-2009-0789) | |
507 | ||
508 | Major changes between OpenSSL 0.9.8i and OpenSSL 0.9.8j [7 Jan 2009]: | |
509 | ---------------------------------------------------------------------- | |
510 | ||
511 | * Fix security issue (CVE-2008-5077) | |
512 | * Merge FIPS 140-2 branch code. | |
513 | ||
514 | Major changes between OpenSSL 0.9.8g and OpenSSL 0.9.8h [28 May 2008]: | |
515 | ---------------------------------------------------------------------- | |
516 | ||
517 | * CryptoAPI ENGINE support. | |
518 | * Various precautionary measures. | |
519 | * Fix for bugs affecting certificate request creation. | |
520 | * Support for local machine keyset attribute in PKCS#12 files. | |
521 | ||
522 | Major changes between OpenSSL 0.9.8f and OpenSSL 0.9.8g [19 Oct 2007]: | |
523 | ---------------------------------------------------------------------- | |
524 | ||
525 | * Backport of CMS functionality to 0.9.8. | |
526 | * Fixes for bugs introduced with 0.9.8f. | |
527 | ||
528 | Major changes between OpenSSL 0.9.8e and OpenSSL 0.9.8f [11 Oct 2007]: | |
529 | ---------------------------------------------------------------------- | |
530 | ||
531 | * Add gcc 4.2 support. | |
532 | * Add support for AES and SSE2 assembly language optimization | |
533 | for VC++ build. | |
534 | * Support for RFC4507bis and server name extensions if explicitly | |
535 | selected at compile time. | |
536 | * DTLS improvements. | |
537 | * RFC4507bis support. | |
538 | * TLS Extensions support. | |
539 | ||
540 | Major changes between OpenSSL 0.9.8d and OpenSSL 0.9.8e [23 Feb 2007]: | |
541 | ---------------------------------------------------------------------- | |
542 | ||
543 | * Various ciphersuite selection fixes. | |
544 | * RFC3779 support. | |
545 | ||
546 | Major changes between OpenSSL 0.9.8c and OpenSSL 0.9.8d [28 Sep 2006]: | |
547 | ---------------------------------------------------------------------- | |
548 | ||
549 | * Introduce limits to prevent malicious key DoS (CVE-2006-2940) | |
550 | * Fix security issues (CVE-2006-2937, CVE-2006-3737, CVE-2006-4343) | |
551 | * Changes to ciphersuite selection algorithm | |
552 | ||
553 | Major changes between OpenSSL 0.9.8b and OpenSSL 0.9.8c [5 Sep 2006]: | |
554 | ---------------------------------------------------------------------- | |
555 | ||
556 | * Fix Daniel Bleichenbacher forged signature attack, CVE-2006-4339 | |
557 | * New cipher Camellia | |
558 | ||
559 | Major changes between OpenSSL 0.9.8a and OpenSSL 0.9.8b [4 May 2006]: | |
560 | ---------------------------------------------------------------------- | |
561 | ||
562 | * Cipher string fixes. | |
563 | * Fixes for VC++ 2005. | |
564 | * Updated ECC cipher suite support. | |
565 | * New functions EVP_CIPHER_CTX_new() and EVP_CIPHER_CTX_free(). | |
566 | * Zlib compression usage fixes. | |
567 | * Built in dynamic engine compilation support on Win32. | |
568 | * Fixes auto dynamic engine loading in Win32. | |
569 | ||
570 | Major changes between OpenSSL 0.9.8 and OpenSSL 0.9.8a [11 Oct 2005]: | |
571 | ---------------------------------------------------------------------- | |
572 | ||
573 | * Fix potential SSL 2.0 rollback, CVE-2005-2969 | |
574 | * Extended Windows CE support | |
575 | ||
576 | Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.8 [5 Jul 2005]: | |
577 | ---------------------------------------------------------------------- | |
578 | ||
579 | * Major work on the BIGNUM library for higher efficiency and to | |
580 | make operations more streamlined and less contradictory. This | |
581 | is the result of a major audit of the BIGNUM library. | |
582 | * Addition of BIGNUM functions for fields GF(2^m) and NIST | |
583 | curves, to support the Elliptic Crypto functions. | |
584 | * Major work on Elliptic Crypto; ECDH and ECDSA added, including | |
585 | the use through EVP, X509 and ENGINE. | |
586 | * New ASN.1 mini-compiler that's usable through the OpenSSL | |
587 | configuration file. | |
588 | * Added support for ASN.1 indefinite length constructed encoding. | |
589 | * New PKCS#12 'medium level' API to manipulate PKCS#12 files. | |
590 | * Complete rework of shared library construction and linking | |
591 | programs with shared or static libraries, through a separate | |
592 | Makefile.shared. | |
593 | * Rework of the passing of parameters from one Makefile to another. | |
594 | * Changed ENGINE framework to load dynamic engine modules | |
595 | automatically from specifically given directories. | |
596 | * New structure and ASN.1 functions for CertificatePair. | |
597 | * Changed the ZLIB compression method to be stateful. | |
598 | * Changed the key-generation and primality testing "progress" | |
599 | mechanism to take a structure that contains the ticker | |
600 | function and an argument. | |
601 | * New engine module: GMP (performs private key exponentiation). | |
602 | * New engine module: VIA PadLOck ACE extension in VIA C3 | |
603 | Nehemiah processors. | |
604 | * Added support for IPv6 addresses in certificate extensions. | |
605 | See RFC 1884, section 2.2. | |
606 | * Added support for certificate policy mappings, policy | |
607 | constraints and name constraints. | |
608 | * Added support for multi-valued AVAs in the OpenSSL | |
609 | configuration file. | |
610 | * Added support for multiple certificates with the same subject | |
611 | in the 'openssl ca' index file. | |
612 | * Make it possible to create self-signed certificates using | |
613 | 'openssl ca -selfsign'. | |
614 | * Make it possible to generate a serial number file with | |
615 | 'openssl ca -create_serial'. | |
616 | * New binary search functions with extended functionality. | |
617 | * New BUF functions. | |
618 | * New STORE structure and library to provide an interface to all | |
619 | sorts of data repositories. Supports storage of public and | |
620 | private keys, certificates, CRLs, numbers and arbitrary blobs. | |
621 | This library is unfortunately unfinished and unused within | |
622 | OpenSSL. | |
623 | * New control functions for the error stack. | |
624 | * Changed the PKCS#7 library to support one-pass S/MIME | |
625 | processing. | |
626 | * Added the possibility to compile without old deprecated | |
627 | functionality with the OPENSSL_NO_DEPRECATED macro or the | |
628 | 'no-deprecated' argument to the config and Configure scripts. | |
629 | * Constification of all ASN.1 conversion functions, and other | |
630 | affected functions. | |
631 | * Improved platform support for PowerPC. | |
632 | * New FIPS 180-2 algorithms (SHA-224, -256, -384 and -512). | |
633 | * New X509_VERIFY_PARAM structure to support parameterisation | |
634 | of X.509 path validation. | |
635 | * Major overhaul of RC4 performance on Intel P4, IA-64 and | |
636 | AMD64. | |
637 | * Changed the Configure script to have some algorithms disabled | |
638 | by default. Those can be explicitly enabled with the new | |
639 | argument form 'enable-xxx'. | |
640 | * Change the default digest in 'openssl' commands from MD5 to | |
641 | SHA-1. | |
642 | * Added support for DTLS. | |
643 | * New BIGNUM blinding. | |
644 | * Added support for the RSA-PSS encryption scheme | |
645 | * Added support for the RSA X.931 padding. | |
646 | * Added support for BSD sockets on NetWare. | |
647 | * Added support for files larger than 2GB. | |
648 | * Added initial support for Win64. | |
649 | * Added alternate pkg-config files. | |
650 | ||
651 | Major changes between OpenSSL 0.9.7l and OpenSSL 0.9.7m [23 Feb 2007]: | |
652 | ---------------------------------------------------------------------- | |
653 | ||
654 | * FIPS 1.1.1 module linking. | |
655 | * Various ciphersuite selection fixes. | |
656 | ||
657 | Major changes between OpenSSL 0.9.7k and OpenSSL 0.9.7l [28 Sep 2006]: | |
658 | ---------------------------------------------------------------------- | |
659 | ||
660 | * Introduce limits to prevent malicious key DoS (CVE-2006-2940) | |
661 | * Fix security issues (CVE-2006-2937, CVE-2006-3737, CVE-2006-4343) | |
662 | ||
663 | Major changes between OpenSSL 0.9.7j and OpenSSL 0.9.7k [5 Sep 2006]: | |
664 | ---------------------------------------------------------------------- | |
665 | ||
666 | * Fix Daniel Bleichenbacher forged signature attack, CVE-2006-4339 | |
667 | ||
668 | Major changes between OpenSSL 0.9.7i and OpenSSL 0.9.7j [4 May 2006]: | |
669 | ---------------------------------------------------------------------- | |
670 | ||
671 | * Visual C++ 2005 fixes. | |
672 | * Update Windows build system for FIPS. | |
673 | ||
674 | Major changes between OpenSSL 0.9.7h and OpenSSL 0.9.7i [14 Oct 2005]: | |
675 | ---------------------------------------------------------------------- | |
676 | ||
677 | * Give EVP_MAX_MD_SIZE its old value, except for a FIPS build. | |
678 | ||
679 | Major changes between OpenSSL 0.9.7g and OpenSSL 0.9.7h [11 Oct 2005]: | |
680 | ---------------------------------------------------------------------- | |
681 | ||
682 | * Fix SSL 2.0 Rollback, CVE-2005-2969 | |
683 | * Allow use of fixed-length exponent on DSA signing | |
684 | * Default fixed-window RSA, DSA, DH private-key operations | |
685 | ||
686 | Major changes between OpenSSL 0.9.7f and OpenSSL 0.9.7g [11 Apr 2005]: | |
687 | ---------------------------------------------------------------------- | |
688 | ||
689 | * More compilation issues fixed. | |
690 | * Adaptation to more modern Kerberos API. | |
691 | * Enhanced or corrected configuration for Solaris64, Mingw and Cygwin. | |
692 | * Enhanced x86_64 assembler BIGNUM module. | |
693 | * More constification. | |
694 | * Added processing of proxy certificates (RFC 3820). | |
695 | ||
696 | Major changes between OpenSSL 0.9.7e and OpenSSL 0.9.7f [22 Mar 2005]: | |
697 | ---------------------------------------------------------------------- | |
698 | ||
699 | * Several compilation issues fixed. | |
700 | * Many memory allocation failure checks added. | |
701 | * Improved comparison of X509 Name type. | |
702 | * Mandatory basic checks on certificates. | |
703 | * Performance improvements. | |
704 | ||
705 | Major changes between OpenSSL 0.9.7d and OpenSSL 0.9.7e [25 Oct 2004]: | |
706 | ---------------------------------------------------------------------- | |
707 | ||
708 | * Fix race condition in CRL checking code. | |
709 | * Fixes to PKCS#7 (S/MIME) code. | |
710 | ||
711 | Major changes between OpenSSL 0.9.7c and OpenSSL 0.9.7d [17 Mar 2004]: | |
712 | ---------------------------------------------------------------------- | |
713 | ||
714 | * Security: Fix Kerberos ciphersuite SSL/TLS handshaking bug | |
715 | * Security: Fix null-pointer assignment in do_change_cipher_spec() | |
716 | * Allow multiple active certificates with same subject in CA index | |
717 | * Multiple X509 verification fixes | |
718 | * Speed up HMAC and other operations | |
719 | ||
720 | Major changes between OpenSSL 0.9.7b and OpenSSL 0.9.7c [30 Sep 2003]: | |
721 | ---------------------------------------------------------------------- | |
722 | ||
723 | * Security: fix various ASN1 parsing bugs. | |
724 | * New -ignore_err option to OCSP utility. | |
725 | * Various interop and bug fixes in S/MIME code. | |
726 | * SSL/TLS protocol fix for unrequested client certificates. | |
727 | ||
728 | Major changes between OpenSSL 0.9.7a and OpenSSL 0.9.7b [10 Apr 2003]: | |
729 | ---------------------------------------------------------------------- | |
730 | ||
731 | * Security: counter the Klima-Pokorny-Rosa extension of | |
732 | Bleichbacher's attack | |
733 | * Security: make RSA blinding default. | |
734 | * Configuration: Irix fixes, AIX fixes, better mingw support. | |
735 | * Support for new platforms: linux-ia64-ecc. | |
736 | * Build: shared library support fixes. | |
737 | * ASN.1: treat domainComponent correctly. | |
738 | * Documentation: fixes and additions. | |
739 | ||
740 | Major changes between OpenSSL 0.9.7 and OpenSSL 0.9.7a [19 Feb 2003]: | |
741 | ---------------------------------------------------------------------- | |
742 | ||
743 | * Security: Important security related bugfixes. | |
744 | * Enhanced compatibility with MIT Kerberos. | |
745 | * Can be built without the ENGINE framework. | |
746 | * IA32 assembler enhancements. | |
747 | * Support for new platforms: FreeBSD/IA64 and FreeBSD/Sparc64. | |
748 | * Configuration: the no-err option now works properly. | |
749 | * SSL/TLS: now handles manual certificate chain building. | |
750 | * SSL/TLS: certain session ID malfunctions corrected. | |
751 | ||
752 | Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.7 [30 Dec 2002]: | |
753 | ---------------------------------------------------------------------- | |
754 | ||
755 | * New library section OCSP. | |
756 | * Complete rewrite of ASN1 code. | |
757 | * CRL checking in verify code and openssl utility. | |
758 | * Extension copying in 'ca' utility. | |
759 | * Flexible display options in 'ca' utility. | |
760 | * Provisional support for international characters with UTF8. | |
761 | * Support for external crypto devices ('engine') is no longer | |
762 | a separate distribution. | |
763 | * New elliptic curve library section. | |
764 | * New AES (Rijndael) library section. | |
765 | * Support for new platforms: Windows CE, Tandem OSS, A/UX, AIX 64-bit, | |
766 | Linux x86_64, Linux 64-bit on Sparc v9 | |
767 | * Extended support for some platforms: VxWorks | |
768 | * Enhanced support for shared libraries. | |
769 | * Now only builds PIC code when shared library support is requested. | |
770 | * Support for pkg-config. | |
771 | * Lots of new manuals. | |
772 | * Makes symbolic links to or copies of manuals to cover all described | |
773 | functions. | |
774 | * Change DES API to clean up the namespace (some applications link also | |
775 | against libdes providing similar functions having the same name). | |
776 | Provide macros for backward compatibility (will be removed in the | |
777 | future). | |
778 | * Unify handling of cryptographic algorithms (software and engine) | |
779 | to be available via EVP routines for asymmetric and symmetric ciphers. | |
780 | * NCONF: new configuration handling routines. | |
781 | * Change API to use more 'const' modifiers to improve error checking | |
782 | and help optimizers. | |
783 | * Finally remove references to RSAref. | |
784 | * Reworked parts of the BIGNUM code. | |
785 | * Support for new engines: Broadcom ubsec, Accelerated Encryption | |
786 | Processing, IBM 4758. | |
787 | * A few new engines added in the demos area. | |
788 | * Extended and corrected OID (object identifier) table. | |
789 | * PRNG: query at more locations for a random device, automatic query for | |
790 | EGD style random sources at several locations. | |
791 | * SSL/TLS: allow optional cipher choice according to server's preference. | |
792 | * SSL/TLS: allow server to explicitly set new session ids. | |
793 | * SSL/TLS: support Kerberos cipher suites (RFC2712). | |
794 | Only supports MIT Kerberos for now. | |
795 | * SSL/TLS: allow more precise control of renegotiations and sessions. | |
796 | * SSL/TLS: add callback to retrieve SSL/TLS messages. | |
797 | * SSL/TLS: support AES cipher suites (RFC3268). | |
798 | ||
799 | Major changes between OpenSSL 0.9.6j and OpenSSL 0.9.6k [30 Sep 2003]: | |
800 | ---------------------------------------------------------------------- | |
801 | ||
802 | * Security: fix various ASN1 parsing bugs. | |
803 | * SSL/TLS protocol fix for unrequested client certificates. | |
804 | ||
805 | Major changes between OpenSSL 0.9.6i and OpenSSL 0.9.6j [10 Apr 2003]: | |
806 | ---------------------------------------------------------------------- | |
807 | ||
808 | * Security: counter the Klima-Pokorny-Rosa extension of | |
809 | Bleichbacher's attack | |
810 | * Security: make RSA blinding default. | |
811 | * Build: shared library support fixes. | |
812 | ||
813 | Major changes between OpenSSL 0.9.6h and OpenSSL 0.9.6i [19 Feb 2003]: | |
814 | ---------------------------------------------------------------------- | |
815 | ||
816 | * Important security related bugfixes. | |
817 | ||
818 | Major changes between OpenSSL 0.9.6g and OpenSSL 0.9.6h [5 Dec 2002]: | |
819 | ---------------------------------------------------------------------- | |
820 | ||
821 | * New configuration targets for Tandem OSS and A/UX. | |
822 | * New OIDs for Microsoft attributes. | |
823 | * Better handling of SSL session caching. | |
824 | * Better comparison of distinguished names. | |
825 | * Better handling of shared libraries in a mixed GNU/non-GNU environment. | |
826 | * Support assembler code with Borland C. | |
827 | * Fixes for length problems. | |
828 | * Fixes for uninitialised variables. | |
829 | * Fixes for memory leaks, some unusual crashes and some race conditions. | |
830 | * Fixes for smaller building problems. | |
831 | * Updates of manuals, FAQ and other instructive documents. | |
832 | ||
833 | Major changes between OpenSSL 0.9.6f and OpenSSL 0.9.6g [9 Aug 2002]: | |
834 | ---------------------------------------------------------------------- | |
835 | ||
836 | * Important building fixes on Unix. | |
837 | ||
838 | Major changes between OpenSSL 0.9.6e and OpenSSL 0.9.6f [8 Aug 2002]: | |
839 | ---------------------------------------------------------------------- | |
840 | ||
841 | * Various important bugfixes. | |
842 | ||
843 | Major changes between OpenSSL 0.9.6d and OpenSSL 0.9.6e [30 Jul 2002]: | |
844 | ---------------------------------------------------------------------- | |
845 | ||
846 | * Important security related bugfixes. | |
847 | * Various SSL/TLS library bugfixes. | |
848 | ||
849 | Major changes between OpenSSL 0.9.6c and OpenSSL 0.9.6d [9 May 2002]: | |
850 | ---------------------------------------------------------------------- | |
851 | ||
852 | * Various SSL/TLS library bugfixes. | |
853 | * Fix DH parameter generation for 'non-standard' generators. | |
854 | ||
855 | Major changes between OpenSSL 0.9.6b and OpenSSL 0.9.6c [21 Dec 2001]: | |
856 | ---------------------------------------------------------------------- | |
857 | ||
858 | * Various SSL/TLS library bugfixes. | |
859 | * BIGNUM library fixes. | |
860 | * RSA OAEP and random number generation fixes. | |
861 | * Object identifiers corrected and added. | |
862 | * Add assembler BN routines for IA64. | |
863 | * Add support for OS/390 Unix, UnixWare with gcc, OpenUNIX 8, | |
864 | MIPS Linux; shared library support for Irix, HP-UX. | |
865 | * Add crypto accelerator support for AEP, Baltimore SureWare, | |
866 | Broadcom and Cryptographic Appliance's keyserver | |
867 | [in 0.9.6c-engine release]. | |
868 | ||
869 | Major changes between OpenSSL 0.9.6a and OpenSSL 0.9.6b [9 Jul 2001]: | |
870 | ---------------------------------------------------------------------- | |
871 | ||
872 | * Security fix: PRNG improvements. | |
873 | * Security fix: RSA OAEP check. | |
874 | * Security fix: Reinsert and fix countermeasure to Bleichbacher's | |
875 | attack. | |
876 | * MIPS bug fix in BIGNUM. | |
877 | * Bug fix in "openssl enc". | |
878 | * Bug fix in X.509 printing routine. | |
879 | * Bug fix in DSA verification routine and DSA S/MIME verification. | |
880 | * Bug fix to make PRNG thread-safe. | |
881 | * Bug fix in RAND_file_name(). | |
882 | * Bug fix in compatibility mode trust settings. | |
883 | * Bug fix in blowfish EVP. | |
884 | * Increase default size for BIO buffering filter. | |
885 | * Compatibility fixes in some scripts. | |
886 | ||
887 | Major changes between OpenSSL 0.9.6 and OpenSSL 0.9.6a [5 Apr 2001]: | |
888 | ---------------------------------------------------------------------- | |
889 | ||
890 | * Security fix: change behavior of OpenSSL to avoid using | |
891 | environment variables when running as root. | |
892 | * Security fix: check the result of RSA-CRT to reduce the | |
893 | possibility of deducing the private key from an incorrectly | |
894 | calculated signature. | |
895 | * Security fix: prevent Bleichenbacher's DSA attack. | |
896 | * Security fix: Zero the premaster secret after deriving the | |
897 | master secret in DH ciphersuites. | |
898 | * Reimplement SSL_peek(), which had various problems. | |
899 | * Compatibility fix: the function des_encrypt() renamed to | |
900 | des_encrypt1() to avoid clashes with some Unixen libc. | |
901 | * Bug fixes for Win32, HP/UX and Irix. | |
902 | * Bug fixes in BIGNUM, SSL, PKCS#7, PKCS#12, X.509, CONF and | |
903 | memory checking routines. | |
904 | * Bug fixes for RSA operations in threaded environments. | |
905 | * Bug fixes in misc. openssl applications. | |
906 | * Remove a few potential memory leaks. | |
907 | * Add tighter checks of BIGNUM routines. | |
908 | * Shared library support has been reworked for generality. | |
909 | * More documentation. | |
910 | * New function BN_rand_range(). | |
911 | * Add "-rand" option to openssl s_client and s_server. | |
912 | ||
913 | Major changes between OpenSSL 0.9.5a and OpenSSL 0.9.6 [10 Oct 2000]: | |
914 | ---------------------------------------------------------------------- | |
915 | ||
916 | * Some documentation for BIO and SSL libraries. | |
917 | * Enhanced chain verification using key identifiers. | |
918 | * New sign and verify options to 'dgst' application. | |
919 | * Support for DER and PEM encoded messages in 'smime' application. | |
920 | * New 'rsautl' application, low level RSA utility. | |
921 | * MD4 now included. | |
922 | * Bugfix for SSL rollback padding check. | |
923 | * Support for external crypto devices [1]. | |
924 | * Enhanced EVP interface. | |
925 | ||
926 | [1] The support for external crypto devices is currently a separate | |
927 | distribution. See the file README.ENGINE. | |
928 | ||
929 | Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a [1 Apr 2000]: | |
930 | ---------------------------------------------------------------------- | |
931 | ||
932 | * Bug fixes for Win32, SuSE Linux, NeXTSTEP and FreeBSD 2.2.8 | |
933 | * Shared library support for HPUX and Solaris-gcc | |
934 | * Support of Linux/IA64 | |
935 | * Assembler support for Mingw32 | |
936 | * New 'rand' application | |
937 | * New way to check for existence of algorithms from scripts | |
938 | ||
939 | Major changes between OpenSSL 0.9.4 and OpenSSL 0.9.5 [25 May 2000]: | |
940 | ---------------------------------------------------------------------- | |
941 | ||
942 | * S/MIME support in new 'smime' command | |
943 | * Documentation for the OpenSSL command line application | |
944 | * Automation of 'req' application | |
945 | * Fixes to make s_client, s_server work under Windows | |
946 | * Support for multiple fieldnames in SPKACs | |
947 | * New SPKAC command line utility and associated library functions | |
948 | * Options to allow passwords to be obtained from various sources | |
949 | * New public key PEM format and options to handle it | |
950 | * Many other fixes and enhancements to command line utilities | |
951 | * Usable certificate chain verification | |
952 | * Certificate purpose checking | |
953 | * Certificate trust settings | |
954 | * Support of authority information access extension | |
955 | * Extensions in certificate requests | |
956 | * Simplified X509 name and attribute routines | |
957 | * Initial (incomplete) support for international character sets | |
958 | * New DH_METHOD, DSA_METHOD and enhanced RSA_METHOD | |
959 | * Read only memory BIOs and simplified creation function | |
960 | * TLS/SSL protocol bugfixes: Accept TLS 'client hello' in SSL 3.0 | |
961 | record; allow fragmentation and interleaving of handshake and other | |
962 | data | |
963 | * TLS/SSL code now "tolerates" MS SGC | |
964 | * Work around for Netscape client certificate hang bug | |
965 | * RSA_NULL option that removes RSA patent code but keeps other | |
966 | RSA functionality | |
967 | * Memory leak detection now allows applications to add extra information | |
968 | via a per-thread stack | |
969 | * PRNG robustness improved | |
970 | * EGD support | |
971 | * BIGNUM library bug fixes | |
972 | * Faster DSA parameter generation | |
973 | * Enhanced support for Alpha Linux | |
974 | * Experimental MacOS support | |
975 | ||
976 | Major changes between OpenSSL 0.9.3 and OpenSSL 0.9.4 [9 Aug 1999]: | |
977 | ---------------------------------------------------------------------- | |
978 | ||
979 | * Transparent support for PKCS#8 format private keys: these are used | |
980 | by several software packages and are more secure than the standard | |
981 | form | |
982 | * PKCS#5 v2.0 implementation | |
983 | * Password callbacks have a new void * argument for application data | |
984 | * Avoid various memory leaks | |
985 | * New pipe-like BIO that allows using the SSL library when actual I/O | |
986 | must be handled by the application (BIO pair) | |
987 | ||
988 | Major changes between OpenSSL 0.9.2b and OpenSSL 0.9.3 [24 May 1999]: | |
989 | ---------------------------------------------------------------------- | |
990 | * Lots of enhancements and cleanups to the Configuration mechanism | |
991 | * RSA OEAP related fixes | |
992 | * Added `openssl ca -revoke' option for revoking a certificate | |
993 | * Source cleanups: const correctness, type-safe stacks and ASN.1 SETs | |
994 | * Source tree cleanups: removed lots of obsolete files | |
995 | * Thawte SXNet, certificate policies and CRL distribution points | |
996 | extension support | |
997 | * Preliminary (experimental) S/MIME support | |
998 | * Support for ASN.1 UTF8String and VisibleString | |
999 | * Full integration of PKCS#12 code | |
1000 | * Sparc assembler bignum implementation, optimized hash functions | |
1001 | * Option to disable selected ciphers | |
8e8a8a5f | 1002 | |
57d7ee3a | 1003 | Major changes between OpenSSL 0.9.1c and OpenSSL 0.9.2b [22 Mar 1999]: |
5f8e6c50 DMSP |
1004 | ---------------------------------------------------------------------- |
1005 | * Fixed a security hole related to session resumption | |
1006 | * Fixed RSA encryption routines for the p < q case | |
1007 | * "ALL" in cipher lists now means "everything except NULL ciphers" | |
1008 | * Support for Triple-DES CBCM cipher | |
1009 | * Support of Optimal Asymmetric Encryption Padding (OAEP) for RSA | |
1010 | * First support for new TLSv1 ciphers | |
1011 | * Added a few new BIOs (syslog BIO, reliable BIO) | |
1012 | * Extended support for DSA certificate/keys. | |
1013 | * Extended support for Certificate Signing Requests (CSR) | |
1014 | * Initial support for X.509v3 extensions | |
1015 | * Extended support for compression inside the SSL record layer | |
1016 | * Overhauled Win32 builds | |
1017 | * Cleanups and fixes to the Big Number (BN) library | |
1018 | * Support for ASN.1 GeneralizedTime | |
1019 | * Splitted ASN.1 SETs from SEQUENCEs | |
1020 | * ASN1 and PEM support for Netscape Certificate Sequences | |
1021 | * Overhauled Perl interface | |
1022 | * Lots of source tree cleanups. | |
1023 | * Lots of memory leak fixes. | |
1024 | * Lots of bug fixes. | |
3b52c2e7 | 1025 | |
57d7ee3a | 1026 | Major changes between SSLeay 0.9.0b and OpenSSL 0.9.1c [23 Dec 1998]: |
5f8e6c50 DMSP |
1027 | ---------------------------------------------------------------------- |
1028 | * Integration of the popular NO_RSA/NO_DSA patches | |
1029 | * Initial support for compression inside the SSL record layer | |
1030 | * Added BIO proxy and filtering functionality | |
1031 | * Extended Big Number (BN) library | |
1032 | * Added RIPE MD160 message digest | |
1033 | * Added support for RC2/64bit cipher | |
1034 | * Extended ASN.1 parser routines | |
1035 | * Adjustments of the source tree for CVS | |
1036 | * Support for various new platforms |