Add ChangeLog entry

commit: 5cf41f80a4cc7ce35ff64deb65a85d05ff275e02 [log] [tgz]
author: Janos Follath <janos.follath@arm.com> Fri Oct 25 08:53:01 2019 +0100
committer: Janos Follath <janos.follath@arm.com> Fri Oct 25 11:26:13 2019 +0100
tree: 24389b2ecb655d2ba8f29a23e3fae9bb6e12f385
parent: 82debf83328da2d669529f29a4e08fbfbd26fb7b [diff]
diff --git a/ChangeLog b/ChangeLog
index 16982a0..d84a364 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -2,6 +2,13 @@
 
 = mbed TLS 2.7.x branch released xxxx-xx-xx
 
+Security
+   * Fix side channel vulnerability in ECDSA. Our bignum implementation is not
+     constant time/constant trace, so side channel attacks can retrieve the
+     blinded value, factor it (as it is smaller than RSA keys and not guaranteed
+     to have only large prime factors), and then, by brute force, recover the
+     key. Reported by Alejandro Cabrera Aldaya and Billy Brumley.
+
 Changes
    * Add unit tests for AES-GCM when called through mbedtls_cipher_auth_xxx()
      from the cipher abstraction layer. Fixes #2198.
commit	5cf41f80a4cc7ce35ff64deb65a85d05ff275e02	[log] [tgz]
author	Janos Follath <janos.follath@arm.com>	Fri Oct 25 08:53:01 2019 +0100
committer	Janos Follath <janos.follath@arm.com>	Fri Oct 25 11:26:13 2019 +0100
tree	24389b2ecb655d2ba8f29a23e3fae9bb6e12f385
parent	82debf83328da2d669529f29a4e08fbfbd26fb7b [diff]