Add ChangeLog message for EC private exponent information leak
diff --git a/ChangeLog b/ChangeLog
index 55e8cf1..4e919c9 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -8,6 +8,8 @@
      and omitted for the sake of saving memory, but potentially
      leading to slight timing differences.
      Reported by Marco Macchetti, Kudelski Group.
+   * Wipe stack buffer temporarily holding EC private exponent
+     after keypair generation.
 
 Bugfix
    * Fix ssl_parse_record_header() to silently discard invalid DTLS records