Add ChangeLog entry

commit: 65d6a97e65e1c3e091dea1ccaa9250f65c575c99 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Fri Oct 02 10:09:53 2015 +0200
committer: Manuel Pégourié-Gonnard <mpg2@elzevir.fr> Fri Oct 02 10:09:53 2015 +0200
tree: df05acabd7f383a40d800ee9c079a23d888e53e1
parent: 13ca8951f96f00750c9fda9928a9affcddcd342c [diff]
diff --git a/ChangeLog b/ChangeLog
index 6f8181b..13cda1a 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,5 +1,16 @@
 PolarSSL ChangeLog
 
+= Version 1.2.17 released 2015-10-xx
+
+Security
+   * Fix possible heap buffer overflow in SSL if a very long hostname is used.
+     Can be trigerred remotely if you accept hostnames from untrusted parties.
+     Found by Guido Vranken.
+
+Changes
+   * ssl_set_hostname() now rejects host names longer that 255 bytes (maximum
+     defined by RFC 1035)
+
 = Version 1.2.16 released 2015-09-17
 
 Security
commit	65d6a97e65e1c3e091dea1ccaa9250f65c575c99	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Fri Oct 02 10:09:53 2015 +0200
committer	Manuel Pégourié-Gonnard <mpg2@elzevir.fr>	Fri Oct 02 10:09:53 2015 +0200
tree	df05acabd7f383a40d800ee9c079a23d888e53e1
parent	13ca8951f96f00750c9fda9928a9affcddcd342c [diff]