Mark J. Cox 951dfbb13a Introduce limits to prevent malicious keys being able to
cause a denial of service.  (CVE-2006-2940)
[Steve Henson, Bodo Moeller]

Fix ASN.1 parsing of certain invalid structures that can result
in a denial of service.  (CVE-2006-2937)  [Steve Henson]

Fix buffer overflow in SSL_get_shared_ciphers() function.
(CVE-2006-3738) [Tavis Ormandy and Will Drewry, Google Security Team]

Fix SSL client code which could crash if connecting to a
malicious SSLv2 server.  (CVE-2006-4343)
[Tavis Ormandy and Will Drewry, Google Security Team]
2006-09-28 11:29:03 +00:00
..
2006-02-04 01:49:36 +00:00
2005-11-25 14:26:12 +00:00
2000-11-06 22:34:17 +00:00
2005-05-11 03:45:39 +00:00
2005-05-28 20:49:09 +00:00
2000-11-06 22:34:17 +00:00
2005-06-06 22:41:50 +00:00