From: Dr. Stephen Henson <steve@openssl.org>
Date: Mon, 29 Nov 2010 18:47:51 +0000 (+0000)
Subject: add CVE to JPAKE fix
X-Git-Tag: OpenSSL_0_9_8q~8
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=f7ffc3a6c987ebb5ffd7acf5543478319dab3f61;p=openssl

add CVE to JPAKE fix
---

diff --git a/CHANGES b/CHANGES
index 2b096100bc..00067bf14c 100644
--- a/CHANGES
+++ b/CHANGES
@@ -6,7 +6,7 @@
 
   *) Fixed J-PAKE implementation error, originally discovered by
      Sebastien Martini, further info and confirmation from Stefan
-     Arentz and Feng Hao. Note that this fix is a security fix.
+     Arentz and Feng Hao. Note that this fix is a security fix. CVE-2010-4252
      [Ben Laurie]
 
  Changes between 0.9.8o and 0.9.8p [16 Nov 2010]