diff --git a/ChangeLog.d/fix_tls13_session_resumption_fail_when_hostname_is_not_localhost.txt b/ChangeLog.d/fix_tls13_session_resumption_fail_when_hostname_is_not_localhost.txt
index 4a4d535aea..5797f48e81 100644
--- a/ChangeLog.d/fix_tls13_session_resumption_fail_when_hostname_is_not_localhost.txt
+++ b/ChangeLog.d/fix_tls13_session_resumption_fail_when_hostname_is_not_localhost.txt
@@ -1,4 +1,4 @@
 Bugfix
-    * Fix TLS 1.3 session reumption fail. Fixes #6488.
+    * Fix TLS 1.3 session resumption fail. Fixes #6488.
     * Add configuration check to exclude TLS 1.3 optional authentication of
       client.
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 6446b760e0..981ec7b681 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -1030,7 +1030,7 @@ static int ssl_conf_check(const mbedtls_ssl_context *ssl)
         ssl->conf->authmode == MBEDTLS_SSL_VERIFY_OPTIONAL )
     {
         MBEDTLS_SSL_DEBUG_MSG(
-            1, ( "Optional verfiy auth mode "
+            1, ( "Optional verify auth mode "
                  "is not available for TLS 1.3 client" ) );
         return( MBEDTLS_ERR_SSL_BAD_CONFIG );
     }