Release notes for GENERAL_NAME_cmp() NULL derefv3.3.1

1 files changed, 15 insertions, 0 deletions

diff --git a/ChangeLog b/ChangeLog
index 06fedf4..d65412e 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -28,6 +28,11 @@ history is also available from Git.
 
 LibreSSL Portable Release Notes:
 
+3.3.1 - Security fix
+
+        * Malformed ASN.1 in a certificate revocation list or a timestamp
+          response token can lead to a NULL pointer dereference.
+
 3.3.0 - Development release
 
         * Make openssl(1) s_server ignore -4 and -6 for compatibility with
@@ -129,6 +134,11 @@ LibreSSL Portable Release Notes:
 
         * Various documentation improvements, particularly around TLS methods.
 
+3.2.3 - Security fix
+
+        * Malformed ASN.1 in a certificate revocation list or a timestamp
+          response token can lead to a NULL pointer dereference.
+
 3.2.2 - Stable release
 
         * This is the first stable release with the new TLSv1.3
@@ -380,6 +390,11 @@ LibreSSL Portable Release Notes:
 
         * Use non-expired certificates first when building a certificate chain.
 
+3.1.5 - Security fix
+
+        * Malformed ASN.1 in a certificate revocation list or a timestamp
+          response token can lead to a NULL pointer dereference.
+
 3.1.4 - Interoperability and bug fixes for the TLSv1.3 client:
 
         * Improve client certificate selection to allow EC certificates