From e54d769fe80d4d6abbdcf7ef84e7d593f8f81eee Mon Sep 17 00:00:00 2001
From: Minos Galanakis <minos.galanakis@arm.com>
Date: Thu, 5 Mar 2026 10:40:08 +0000
Subject: [PATCH] Updated Changelog

Signed-off-by: Minos Galanakis <minos.galanakis@arm.com>
---
 ChangeLog.d/fix-ccm-finish.txt | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/ChangeLog.d/fix-ccm-finish.txt b/ChangeLog.d/fix-ccm-finish.txt
index 7bf5841612..7600ec89a0 100644
--- a/ChangeLog.d/fix-ccm-finish.txt
+++ b/ChangeLog.d/fix-ccm-finish.txt
@@ -1,3 +1,6 @@
-Bugfix
-   * Add tag length validation in mbedtls_ccm_finish() to reject lengths
-     that are invalid or differ from the negotiated tag length.
+Security
+   * Add tag length validation in mbedtls_ccm_finish() to prevent
+     out-of-bounds reads and mitigate potential application buffer
+     overflows where applications relied on the library to enforce
+     tag length constraints.
+