Fix length checking for AEAD ciphersuites
diff --git a/ChangeLog b/ChangeLog
index c1df109..563aa54 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -5,6 +5,11 @@
 (and various x509 structures got a new member)
 
 = PolarSSL 1.3 branch
+Security
+   * Fix length checking for AEAD ciphersuites (found by Codenomicon).
+     It was possible to crash the server (and client) using crafted messages
+     when a GCM suite was chosen.
+
 Features
    * Add CCM module and cipher mode to Cipher Layer
    * Support for CCM and CCM_8 ciphersuites