OpenSSL 1.1.1k

Major changes between OpenSSL 1.1.1j and OpenSSL 1.1.1k [25 Mar 2021]

• Fixed a problem with verifying a certificate chain when using the X509_V_FLAG_X509_STRICT flag (CVE-2021-3450)
• Fixed an issue where an OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client (CVE-2021-3449)