From 93b660b67ac8dc96de701d6c33b6f369b66a1333 Mon Sep 17 00:00:00 2001
From: Ronald Cron <ronald.cron@arm.com>
Date: Thu, 2 May 2024 15:36:16 +0200
Subject: [PATCH] ChangeLog: Add missing reference to CVE in security entry

Signed-off-by: Ronald Cron <ronald.cron@arm.com>
---
 ChangeLog | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ChangeLog b/ChangeLog
index eae2a1977e..b691a0f2a0 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -144,6 +144,7 @@ Security
    * Fix a stack buffer overread (less than 256 bytes) when parsing a TLS 1.3
      ClientHello in a TLS 1.3 server supporting some PSK key exchange mode. A
      malicious client could cause information disclosure or a denial of service.
+     Fixes CVE-2024-30166.
    * Passing buffers that are stored in untrusted memory as arguments
      to PSA functions is now secure by default.
      The PSA core now protects against modification of inputs or exposure