ChangeLog: Add missing reference to CVE in security entry

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2024-12-26 18:20:21 +00:00 · 2024-05-02 15:36:16 +02:00 · 2024-05-02 15:36:16 +02:00 · 93b660b67a
commit 93b660b67a
parent 898066b851
1 changed files with 1 additions and 0 deletions
--- a/1
+++ b/1
@ -144,6 +144,7 @@ Security
   * Fix a stack buffer overread (less than 256 bytes) when parsing a TLS 1.3
     ClientHello in a TLS 1.3 server supporting some PSK key exchange mode. A
     malicious client could cause information disclosure or a denial of service.
+     Fixes CVE-2024-30166.
   * Passing buffers that are stored in untrusted memory as arguments
     to PSA functions is now secure by default.
     The PSA core now protects against modification of inputs or exposure