commit 2c4f9460ea98ca0a1d5eefbd10cf6c33c3629b7e
author Simon Butcher <simon.butcher@arm.com> Sat Sep 30 23:39:46 2017 +0100
committer Simon Butcher <simon.butcher@arm.com> Fri Oct 06 11:59:13 2017 +0100
tree fe86571c4973362f3f259ae69d827026a225f44c
parent 1a9a51c7cfec37271b064324883bbd03087d125c

Update ChangeLog for fix to #836

ChangeLog

diff --git a/ChangeLog b/ChangeLog
index 8729c87..ad773c7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -8,6 +8,8 @@
 Bugfix
    * Fix ssl_parse_record_header() to silently discard invalid DTLS records
      as recommended in RFC 6347 Section 4.1.2.7.
+   * Fix memory leak in mbedtls_ssl_set_hostname() when called multiple times.
+     Found by projectgus and jethrogb, #836.
 
 = mbed TLS 2.6.0 branch released 2017-08-10
 
@@ -198,8 +200,6 @@
      team. #569 CVE-2017-2784
 
 Bugfix
-   * Fix memory leak in mbedtls_ssl_set_hostname() when called multiple times.
-     Found by jethrogb, #836.
    * Fix output certificate verification flags set by x509_crt_verify_top() when
      traversing a chain of trusted CA. The issue would cause both flags,
      MBEDTLS_X509_BADCERT_NOT_TRUSTED and MBEDTLS_X509_BADCERT_EXPIRED, to be