1 files changed, 27 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 1a8bb80..4fe0e02 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -28,6 +28,33 @@ history is also available from Git.
 LibreSSL Portable Release Notes:
+3.7.1 - Development release
+        * Internal improvements
+          - Initial overhaul of the BIGNUM code:
+            - Added a new framework that allows architecture-dependent
+              replacement implementations for bignum primitives
+            - Imported s2n-bignum's constant time assembly primitives.
+              Use them for amd64 and arm64.
+            - Lots of cleanup, simplification and bug fixes
+          - Assorted initial cleanup in the EC code
+          - Fixed Perl assembly generators to move constants into .rodata.
+            This allows code to run with execute-only permissions
+        * Bug fixes
+          - Fixed a memory leak, a double free and various other issues in
+            BIO_new_NDEF()
+          - Avoid infinite loops in DSA and ECDSA signing
+          - Check DSA parameter sanity
+          - Fixed various crashes in the openssl(1) testing utility
+          - Do not check policies by default in the new X.509 verifier
+        * Public API:
+          - added EVP_CIPHER_meth_* support (only setters)
+          - UI_null(), X509_CRL_get0_tbs_sigalg(), X509_STORE_*check_issued(),
+            X509_get0_uids()
+        * Security fix
+          - A malicious certificate revocation list or timestamp response token
+            would allow an attacker to read arbitrary memory.
 3.7.0 - Development release
        * Internal improvements

diff --git a/ChangeLog b/ChangeLog index 1a8bb80..4fe0e02 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -28,6 +28,33 @@ history is also available from Git.
28		28
29	LibreSSL Portable Release Notes:	29	LibreSSL Portable Release Notes:
30		30
		31	3.7.1 - Development release
		32
		33	* Internal improvements
		34	- Initial overhaul of the BIGNUM code:
		35	- Added a new framework that allows architecture-dependent
		36	replacement implementations for bignum primitives
		37	- Imported s2n-bignum's constant time assembly primitives.
		38	Use them for amd64 and arm64.
		39	- Lots of cleanup, simplification and bug fixes
		40	- Assorted initial cleanup in the EC code
		41	- Fixed Perl assembly generators to move constants into .rodata.
		42	This allows code to run with execute-only permissions
		43	* Bug fixes
		44	- Fixed a memory leak, a double free and various other issues in
		45	BIO_new_NDEF()
		46	- Avoid infinite loops in DSA and ECDSA signing
		47	- Check DSA parameter sanity
		48	- Fixed various crashes in the openssl(1) testing utility
		49	- Do not check policies by default in the new X.509 verifier
		50	* Public API:
		51	- added EVP_CIPHER_meth_* support (only setters)
		52	- UI_null(), X509_CRL_get0_tbs_sigalg(), X509_STORE_*check_issued(),
		53	X509_get0_uids()
		54	* Security fix
		55	- A malicious certificate revocation list or timestamp response token
		56	would allow an attacker to read arbitrary memory.
		57
31	3.7.0 - Development release	58	3.7.0 - Development release
32		59
33	* Internal improvements	60	* Internal improvements