Submitted by: Tomas Hoger <thoger@redhat.com> Fix for CVE-2010-0433 where some kerberos enabled versions of OpenSSL could be crashed if the relevant tables were not present (e.g. chrooted).

commit: cca1cd9a3447dd067503e4a85ebd1679ee78a48e [log] [tgz]
author: Dr. Stephen Henson <steve@openssl.org> Wed Mar 03 15:41:18 2010 +0000
committer: Dr. Stephen Henson <steve@openssl.org> Wed Mar 03 15:41:18 2010 +0000
tree: 3ca40ec42ae2071e24cd5903ad4ffedc0f076a19
parent: 2c772c87003fd941f2c536672921160c21b77964 [diff] [blame]
diff --git a/CHANGES b/CHANGES
index b59daae..a51168e 100644
--- a/CHANGES
+++ b/CHANGES

@@ -909,6 +909,12 @@
 
   *) Change 'Configure' script to enable Camellia by default.
      [NTT]
+  
+   Changes between 0.9.8m and 0.9.8n [xx XXX xxxx]
+  
+  *) Fix for CVE-2010-0433 where some kerberos enabled versions of OpenSSL 
+     could be crashed if the relevant tables were not present (e.g. chrooted).
+     [Tomas Hoger <thoger@redhat.com>]
 
  Changes between 0.9.8l and 0.9.8m  [xx XXX xxxx]
commit	cca1cd9a3447dd067503e4a85ebd1679ee78a48e	[log] [tgz]
author	Dr. Stephen Henson <steve@openssl.org>	Wed Mar 03 15:41:18 2010 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	Wed Mar 03 15:41:18 2010 +0000
tree	3ca40ec42ae2071e24cd5903ad4ffedc0f076a19
parent	2c772c87003fd941f2c536672921160c21b77964 [diff] [blame]