Clarify ChangeLog for #569

commit: 71e9d58dc27c72ff1c402226f18494e760e098b0 [log] [tgz]
author: Simon Butcher <simon.butcher@arm.com> Tue Feb 28 18:47:27 2017 +0000
committer: Simon Butcher <simon.butcher@arm.com> Tue Feb 28 18:47:27 2017 +0000
tree: e3203ca0f00ee910f4b3e45779eafb235ed89759
parent: 7dadc2f25990e852f4766a0d3a94bc0b99d02631 [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index 99df526..f81687b 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -11,14 +11,11 @@
    * Removed MD5 from the allowed hash algorithms for CertificateRequest and
      CertificateVerify messages, to prevent SLOTH attacks against TLS 1.2.
      Introduced by interoperability fix for #513.
-
-Security
    * Fixed a bug that caused freeing a buffer that was allocated on the stack,
      when verifying the validity of a key on secp224k1. This could be
      triggered remotely for example with a maliciously constructed certificate
-     and might have led to remote code execution on some exotic embedded
-     platforms. Reported independently by rongsaws and Regina Wilson.
-     CVE-2017-2784
+     and potentially could lead to remote code execution on some platforms.
+     Reported independently by rongsaws and Regina Wilson. #569 CVE-2017-2784
 
 Bugfix
    * Fix output certificate verification flags set by x509_crt_verify_top() when
commit	71e9d58dc27c72ff1c402226f18494e760e098b0	[log] [tgz]
author	Simon Butcher <simon.butcher@arm.com>	Tue Feb 28 18:47:27 2017 +0000
committer	Simon Butcher <simon.butcher@arm.com>	Tue Feb 28 18:47:27 2017 +0000
tree	e3203ca0f00ee910f4b3e45779eafb235ed89759
parent	7dadc2f25990e852f4766a0d3a94bc0b99d02631 [diff] [blame]