From 016ea076e72d771137d283958714e17368e3c049 Mon Sep 17 00:00:00 2001
From: Paul Bakker <p.j.bakker@polarssl.org>
Date: Wed, 19 Jun 2013 11:50:30 +0200
Subject: [PATCH] Added Security note (Advisory 2013-03) in ChangeLog

---
 ChangeLog | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/ChangeLog b/ChangeLog
index 4da965f98..00ab95d83 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -31,6 +31,10 @@ Bugfix
    * Fixed bignum.c and bn_mul.h to support Thumb2 and LLVM compiler
    * Fixed values for 2-key Triple DES in cipher layer
 
+Security
+   * A possible DoS during the SSL Handshake, due to faulty parsing of
+     PEM-encoded certificates has been fixed (found by Jack Lloyd)
+
 = Version 1.2.7 released 2013-04-13
 Features
    * Ability to specify allowed ciphersuites based on the protocol version.