Updated Changelog

Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
2026-04-02 18:46:06 +02:00 · 2026-03-05 10:40:08 +00:00
parent a397bb13a3
commit e54d769fe8
1 changed files with 6 additions and 3 deletions
--- a/ChangeLog.d/fix-ccm-finish.txt
+++ b/ChangeLog.d/fix-ccm-finish.txt
@@ -1,3 +1,6 @@
-Bugfix
-   * Add tag length validation in mbedtls_ccm_finish() to reject lengths
-     that are invalid or differ from the negotiated tag length.
+Security
+   * Add tag length validation in mbedtls_ccm_finish() to prevent
+     out-of-bounds reads and mitigate potential application buffer
+     overflows where applications relied on the library to enforce
+     tag length constraints.
+