From d79819418a49b1e080bfd5e2a70717d72ac7bf6b Mon Sep 17 00:00:00 2001
From: Matthias Ringwald <matthias@ringwald.ch>
Date: Sat, 19 Jun 2021 18:59:53 +0200
Subject: [PATCH] changelog: document gap security changes

---
 CHANGELOG.md | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 7edde91c4..ad9922802 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -20,10 +20,12 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
 - ATT DB: fix spelling `gatt_server_get_handle_range_for_service_with_uuid128`, `gatt_server_get_handle_range_for_service_with_uuid16`
 
 ### Changed
+- HCI: update advertising data without stopping advertising first
 - GAP: Drop local bonding flag in IO Capability Reply if remote does not indicate bonding
 - GAP: return status for `gap_set_security_mode`
-- HCI: update advertising data without stopping advertising first
-
+- GAP: abort legacy pairing if Level 4 is required
+- GAP: abort SSP on IO Capabilities Request event if Level 4 is required but SC not supported by remote
+- GAP: abort SSP on User Confirmation Request event if Level 3 is required but MITM protection not possible
 
 ## Release v1.4