Remove obsolete information about a change for 0.9.7n.
(No further releases from the 0.9.7 branch are planned. Note that the "deleted" change is also in 0.9.8f.)
This commit is contained in:
Bodo Möller
parent
7f5448e3a8
commit
b6622f9623
13
CHANGES
13
CHANGES
@ -1599,19 +1599,6 @@
|
|||||||
differing sizes.
|
differing sizes.
|
||||||
[Richard Levitte]
|
[Richard Levitte]
|
||||||
|
|
||||||
Changes between 0.9.7m and 0.9.7n [xx XXX xxxx]
|
|
||||||
|
|
||||||
*) In the SSL/TLS server implementation, be strict about session ID
|
|
||||||
context matching (which matters if an application uses a single
|
|
||||||
external cache for different purposes). Previously,
|
|
||||||
out-of-context reuse was forbidden only if SSL_VERIFY_PEER was
|
|
||||||
set. This did ensure strict client verification, but meant that,
|
|
||||||
with applications using a single external cache for quite
|
|
||||||
different requirements, clients could circumvent ciphersuite
|
|
||||||
restrictions for a given session ID context by starting a session
|
|
||||||
in a different context.
|
|
||||||
[Bodo Moeller]
|
|
||||||
|
|
||||||
Changes between 0.9.7l and 0.9.7m [23 Feb 2007]
|
Changes between 0.9.7l and 0.9.7m [23 Feb 2007]
|
||||||
|
|
||||||
*) Cleanse PEM buffers before freeing them since they may contain
|
*) Cleanse PEM buffers before freeing them since they may contain
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user