===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/61.html,v
retrieving revision 1.83
retrieving revision 1.84
diff -u -r1.83 -r1.84
--- www/61.html	2017/04/09 15:41:29	1.83
+++ www/61.html	2017/04/09 15:47:12	1.84
@@ -733,30 +733,29 @@
     <li>libtls now always loads CA, key and certificate files at the time the
 	configuration function is called. This simplifies code and results in
 	a single memory based code path being used to provide data to libssl.
-    <li>Add support for OCSP intermediate certificates.
-    <li>Added functions used by stunnel and exim from BoringSSL - this
-	brings in X509_check_host, X509_check_email, X509_check_ip, and
-	X509_check_ip_asc.
+    <li>Added support for OCSP intermediate certificates.
+    <li>Added X509_check_host(), X509_check_email(), X509_check_ip(), and
+	X509_check_ip_asc() functions, via BoringSSL.
     <li>Added initial support for iOS, thanks to Jacob Berkman.
     <li>Improved behavior of arc4random on Windows when using memory leak
 	analysis software.
     <li>Correctly handle an EOF that occurs prior to the TLS handshake
 	completing. Reported by Vasily Kolobkov, based on a diff from Marko
 	Kreen.
-    <li>Limit the support of the "backward compatible" ssl2 handshake to
+    <li>Limit the support of the "backward compatible" SSLv2 handshake to
 	only be used if TLS 1.0 is enabled.
     <li>Fix incorrect results in certain cases on 64-bit systems when
 	BN_mod_word() can return incorrect results. BN_mod_word() now can
 	return an error condition. Thanks to Brian Smith.
-    <li>Added constant-time updates to address CVE-2016-0702
-    <li>Fixed undefined behavior in BN_GF2m_mod_arr()
-    <li>Removed unused Cryptographic Message Support (CMS)
-    <li>More conversions of long long idioms to time_t
+    <li>Added constant-time updates to address CVE-2016-0702.
+    <li>Fixed undefined behavior in BN_GF2m_mod_arr().
+    <li>Removed unused Cryptographic Message Support (CMS).
+    <li>More conversions of long long idioms to time_t.
     <li>Improved compatibility by avoiding printing NULL strings with
 	printf.
     <li>Reverted change that cleans up the EVP cipher context in
-       EVP_EncryptFinal() and EVP_DecryptFinal(). Some software relies on the
-       previous behaviour.
+        EVP_EncryptFinal() and EVP_DecryptFinal(). Some software relies on the
+        previous behaviour.
     <li>Avoid unbounded memory growth in libssl, which can be triggered
 	by a TLS client repeatedly renegotiating and sending OCSP Status
 	Request TLS extensions.
@@ -821,7 +820,7 @@
     <li>Added EVP interface for MD5+SHA1 hashes.
     <li>Improved nc(1) TLS handshake CPU usage and server-side error
 	reporting.
-    <li>Add a constant time version of BN_gcd and use it default for
+    <li>Added a constant time version of BN_gcd and use it default for
 	BN_gcd to avoid the possibility of sidechannel timing attacks
 	against RSA private key generation - Thanks to Alejandro
 	Cabrera <aldaya@gmail.com>