diff --git a/ChangeLog b/ChangeLog
index bcfe0ac94a..1c8314bcff 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -6,6 +6,8 @@ Security
    * Fix potential integer overflow to buffer overflow in
      mbedtls_rsa_rsaes_pkcs1_v15_encrypt and mbedtls_rsa_rsaes_oaep_encrypt
      (not triggerable remotely in (D)TLS).
+   * Fix missing padding length check in mbedtls_rsa_rsaes_pkcs1_v15_decrypt 
+     required by PKCS1 v2.2
 
 Bugfix
    * Fix bug in mbedtls_mpi_add_mpi() that caused wrong results when the three