Fix ChangeLog - misplaced entries

ChangeLog

@@ -1,21 +1,21 @@
 mbed TLS ChangeLog (Sorted per branch, date)
 
-= mbed TLS 2.1.0 released 2015-09-04
+= mbed TLS 2.1.1 released 2015-09-??
 
 Security
    * Add countermeasure against Lenstra's RSA-CRT attack for PKCS#1 v1.5
      signatures. (Found by Florian Weimer, Red Hat.)
      https://securityblog.redhat.com/2015/09/02/factoring-rsa-keys-with-tls-perfect-forward-secrecy/
+   * Fix possible client-side NULL pointer dereference (read) when the client
+     tries to continue the handshake after it failed (a misuse of the API).
+     (Found by GDS Labs using afl-fuzz, patch provided by GDS Labs.)
+
+= mbed TLS 2.1.0 released 2015-09-04
 
 Features
    * Added support for yotta as a build system.
    * Primary open source license changed to Apache 2.0 license.
 
-Security
-   * Fix possible client-side NULL pointer dereference (read) when the client
-     tries to continue the handshake after it failed (a misuse of the API).
-     (Found by GDS Labs using afl-fuzz, patch provided by GDS Labs.)
-
 Bugfix
    * Fix segfault in the benchmark program when benchmarking DHM.
    * Fix build error with CMake and pre-4.5 versions of GCC (found by Hugo