diff --git a/NEWS b/NEWS
index 96851b17b7dfc15a91e5b921ef70a0bee7e4291b..d0af2d7a7ccbefc45b507665f410b5f2d37314f2 100644
--- a/NEWS
+++ b/NEWS
@@ -1,7 +1,51 @@
 NEWS for the 2.5 release
 
-	This release breaks source and binary compatibility for the
-	RSA-related functions.
+	XXX: Remaining: Manual update. Key generation for dsa256.
+
+	*Important*: this release breaks source and binary
+	compatibility for the digital signature functions.
+	Incompatible changes:
+
+	* The functions rsa_md5_sign, rsa_sha1_sign and
+          rsa_sha256_sign, and the corresponding _digest varians, now
+          have a return value which callers should check. The functions
+          return failure if the key is too small for the type of
+          signature.
+
+	* The functions dsa_sign and dsa_verify are renamed to
+          dsa_sha1_sign and dsa_sha1_verify. The _-digest variants are
+          renamed similarly. These functions now have a return value
+          which callers sould check, and they return failure if the
+          number q is not of the appropriate size.
+
+	Other changes:
+
+	* Support for sha224, sha384 and sha512.
+
+	* Support for digital signatures using rsa-sha512 and
+          dsa-sha256. Due to lack of official test vectors and interop
+          testing, this support should be considered somewhat
+          experimental.
+
+	* x86_64 assembler implementation actually included in the
+	  distribution (was accidentally left out in nettle-2.0).
+
+	* Configure script now detects if the compiler uses a 32-bit
+          or 64-bit on x86_64 (prevously did this for sparc only).
+          Also sets the default location for installing libraries
+          (libdir) depending on system type andd the ABI used.
+
+	* Added the nettle and gmp libraries as dependencies when
+          linking shared library libhogweed.so. On systems using
+          shared libraries where such dependencies work (in
+          particular, ELF systems), it is sufficient to link
+          applications with -lhogweed. For static linking -lhogweed
+          -lnettle -lgmp is still required.
+
+	* The program pkcs1-conv is extended to also handle dsa keys.
+          Contributed by Magnus Holmgren.
+
+	* Slightly improved sha1 performance on x86.
 	
 NEWS for the 2.0 release