From f68d402029c6fb61a73b63ba5b977ec9a8a52270 Mon Sep 17 00:00:00 2001
From: Janos Follath <janos.follath@arm.com>
Date: Fri, 23 Jan 2026 16:31:53 +0000
Subject: [PATCH] sig_algs: add ChangeLog

Signed-off-by: Janos Follath <janos.follath@arm.com>
---
 ChangeLog.d/sig_algs_check.txt | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 ChangeLog.d/sig_algs_check.txt

diff --git a/ChangeLog.d/sig_algs_check.txt b/ChangeLog.d/sig_algs_check.txt
new file mode 100644
index 0000000000..b0aed6dfd3
--- /dev/null
+++ b/ChangeLog.d/sig_algs_check.txt
@@ -0,0 +1,5 @@
+Security
+   * Fix a bug in the TLS 1.2 client's signature algorithm check, which caused
+     the client to accept server key exchange messages signed with a signature
+     algorithm explicitly disallowed by the client. Found and reported by
+     EFR-GmbH and M. Heuft of Security-Research-Consulting GmbH. CVE-2026-25834