Fix length checking for AEAD ciphersuites
diff --git a/ChangeLog b/ChangeLog
index c1df109..563aa54 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -5,6 +5,11 @@
(and various x509 structures got a new member)
= PolarSSL 1.3 branch
+Security
+ * Fix length checking for AEAD ciphersuites (found by Codenomicon).
+ It was possible to crash the server (and client) using crafted messages
+ when a GCM suite was chosen.
+
Features
* Add CCM module and cipher mode to Cipher Layer
* Support for CCM and CCM_8 ciphersuites