Add ChangeLog entry

commit: 660f4f8c5bc84558fb16089f639d65357dfb2625 [log] [tgz]
author: Janos Follath <janos.follath@arm.com> Wed Jan 16 16:06:18 2019 +0000
committer: Janos Follath <janos.follath@arm.com> Wed Jan 16 17:25:13 2019 +0000
tree: 334eb32b1690109b5d30ac1af17d8c6f02d3d374
parent: 7b774483bfa994f03115dec929a188b6eb8130c0 [diff]
diff --git a/ChangeLog b/ChangeLog
index 005573d..6b73b6e 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,6 +2,13 @@
 
 = mbed TLS 2.7.x branch released xxxx-xx-xx
 
+Security
+   * The deterministic ECDSA calculation reused the scheme's HMAC-DRBG to
+     implement blinding. Because of this for the same key and message the same
+     blinding value was generated. This reduced the effectiveness of the
+     countermeasure and leaked information about the private key through side
+     channels. Reported by Jack Lloyd.
+
 Bugfix
    * Run the AD too long test only if MBEDTLS_CCM_ALT is not defined.
      Raised as a comment in #1996.
commit	660f4f8c5bc84558fb16089f639d65357dfb2625	[log] [tgz]
author	Janos Follath <janos.follath@arm.com>	Wed Jan 16 16:06:18 2019 +0000
committer	Janos Follath <janos.follath@arm.com>	Wed Jan 16 17:25:13 2019 +0000
tree	334eb32b1690109b5d30ac1af17d8c6f02d3d374
parent	7b774483bfa994f03115dec929a188b6eb8130c0 [diff]