diff --git a/CHANGES b/CHANGES
index 63bf72c5959ad3b562dc774257b3652b5fa88a81..7c0664edb3f1ae9f7d0e0565be8f67a659a82256 100644
--- a/CHANGES
+++ b/CHANGES
@@ -4,15 +4,6 @@
 
  Changes between 0.9.8k and 1.0  [xx XXX xxxx]
 
-  *) Fixes to stateless session resumption handling. Use initial_ctx when
-     issuing and attempting to decrypt tickets in case it has changed during
-     servername handling. Use a non-zero length session ID when attempting
-     stateless session resumption: this makes it possible to determine if
-     a resumption has occurred immediately after receiving server hello 
-     (several places in OpenSSL subtly assume this) instead of later in
-     the handshake.
-     [Steve Henson]
-
   *) Update OCSP request code to permit adding custom headers to the request:
      some responders need this.
      [Steve Henson]
@@ -849,6 +840,15 @@
 
  Changes between 0.9.8k and 0.9.8l  [xx XXX xxxx]
 
+  *) Fixes to stateless session resumption handling. Use initial_ctx when
+     issuing and attempting to decrypt tickets in case it has changed during
+     servername handling. Use a non-zero length session ID when attempting
+     stateless session resumption: this makes it possible to determine if
+     a resumption has occurred immediately after receiving server hello 
+     (several places in OpenSSL subtly assume this) instead of later in
+     the handshake.
+     [Steve Henson]
+
   *) The functions ENGINE_ctrl(), OPENSSL_isservice(),
      CMS_get1_RecipientRequest() and RAND_bytes() can return <=0 on error
      fixes for a few places where the return code is not checked