From b7a18c049863bcddcc74321a0d32467216f844cd Mon Sep 17 00:00:00 2001
From: Andrzej Kurek <andrzej.kurek@arm.com>
Date: Wed, 25 Apr 2018 05:25:30 -0400
Subject: [PATCH] Changelog entry

---
 ChangeLog | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/ChangeLog b/ChangeLog
index 100551972..a0810d1a7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -15,6 +15,11 @@ Security
      where an optional signature algorithms list is expected in the cases of
      the signature algorithms section being too short. In the debug builds
      the overread data is printed to the standard output.
+   * Fix a client-side bug in the validation of the server's ciphersuite choice
+     potentially leading to the client accepting a ciphersuite it didn't offer 
+     or one that cannot be used with the (D)TLS version chosen by the server.
+     This may lead to corruption of internal data structures for some 
+     configurations.
 
 Features
    * Add option MBEDTLS_AES_FEWER_TABLES to dynamically compute 3/4 of the AES tables
@@ -64,8 +69,6 @@ Bugfix
    * Fix buffer length assertions in the ssl_parse_certificate_request()
      function which leads to a potential one byte overread of the message
      buffer.
-   * Fix cipher suite validation in ssl_parse_server_hello() by performing same
-     checks as performed in ssl_write_client_hello().
 
 Changes
    * Remove some redundant code in bignum.c. Contributed by Alexey Skalozub.