- Replaced function that fixes man-in-the-middle attack - Added message to indicate inclusion of man-in-the-middle attack (Reported by Larry Highsmith, Subreption LLC) - Released version 0.99-pre3

commit: 345a6fee9179888b279c30c7a058308c40a9ad24 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Mon Feb 28 21:20:02 2011 +0000
committer: Paul Bakker <p.j.bakker@polarssl.org> Mon Feb 28 21:20:02 2011 +0000
tree: 27cd10c24d45a20d6ee87d191db39d24abe6d8f7
parent: 5a1494fb30e69202e8e2233ba6b8abdff0cf88de [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 7182b9e..5b8193e 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,6 +1,7 @@
 PolarSSL ChangeLog
 
-= Version 0.99-pre2 released on 2011-02-25
+= Version 0.99-pre3 released on 2011-02-28
+This release replaces version 0.99-pre2 which had possible copyright issues.
 Features
    * Parsing PEM private keys encrypted with DES and AES
      are now supported as well (Fixes ticket #5)
@@ -24,6 +25,11 @@
      to negotiate anonymous connection (Fixes ticket #12,
 	 found by Boris Krasnovskiy)
 
+Security fixes
+   * Fixed a possible Man-in-the-Middle attack on the
+     Diffie Hellman key exchange (thanks to Larry Highsmith,
+	 Subreption LLC)
+
 = Version 0.99-pre1 released on 2011-01-30
 Features
 Note: Most of these features have been donated by Fox-IT
commit	345a6fee9179888b279c30c7a058308c40a9ad24	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Mon Feb 28 21:20:02 2011 +0000
committer	Paul Bakker <p.j.bakker@polarssl.org>	Mon Feb 28 21:20:02 2011 +0000
tree	27cd10c24d45a20d6ee87d191db39d24abe6d8f7
parent	5a1494fb30e69202e8e2233ba6b8abdff0cf88de [diff] [blame]