From 53d216081cf97b90d2cfdf06f9802680c0e8a05a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Manuel=20P=C3=A9gouri=C3=A9-Gonnard?=
 <manuel.pegourie-gonnard@arm.com>
Date: Thu, 20 Aug 2020 12:17:05 +0200
Subject: [PATCH] Add a ChangeLog entry for local Lucky13 variant
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
---
 ChangeLog.d/local-lucky13.txt | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 ChangeLog.d/local-lucky13.txt

diff --git a/ChangeLog.d/local-lucky13.txt b/ChangeLog.d/local-lucky13.txt
new file mode 100644
index 000000000..5a3eed0ba
--- /dev/null
+++ b/ChangeLog.d/local-lucky13.txt
@@ -0,0 +1,9 @@
+Security
+   * Fix a local timing side channel vulnerability in (D)TLS record decryption
+     when using a CBC ciphersuites without the Encrypt-then-Mac extension. In
+     those circumstances, a local attacker able to observe the state of the
+     cache could use well-chosen functions to measure the exact computation
+     time of the HMAC, and follow up with the usual range of Lucky 13 attacks,
+     including plaintext recovery and key recovery. Found and reported by Tuba
+     Yavuz, Farhaan Fowze, Ken (Yihan) Bai, Grant Hernandez, and Kevin Butler
+     (University of Florida) and Dave Tian (Purdue University).