Add change log Signed-off-by: Ronald Cron <ronald.cron@arm.com>

commit: c3e9abedfffc954b9dd68bece97158dd5bfaddda [log] [tgz]
author: Ronald Cron <ronald.cron@arm.com> Fri Jun 17 17:23:06 2022 +0200
committer: Ronald Cron <ronald.cron@arm.com> Mon Jun 20 13:53:50 2022 +0200
tree: c4abb6a83f6322efdcbd483cefe09c86fe7504a4
parent: 30c5a2520eb558e8b40e745ae98c4a5aa91087cb [diff]
diff --git a/ChangeLog.d/tls13-fix-key-usage-checks.txt b/ChangeLog.d/tls13-fix-key-usage-checks.txt
new file mode 100644
index 0000000..f19bf52
--- /dev/null
+++ b/ChangeLog.d/tls13-fix-key-usage-checks.txt

@@ -0,0 +1,7 @@
+Security
+   * Fix check of certificate key usage in TLS 1.3. The usage of the public key
+     provided by a client or server certificate for authentication was not
+     checked properly when validating the certificate. This could cause a
+     client or server to be able to authenticate itself through a certificate
+     to an Mbed TLS TLS 1.3 server or client while it does not own a proper
+     certificate to do so.
commit	c3e9abedfffc954b9dd68bece97158dd5bfaddda	[log] [tgz]
author	Ronald Cron <ronald.cron@arm.com>	Fri Jun 17 17:23:06 2022 +0200
committer	Ronald Cron <ronald.cron@arm.com>	Mon Jun 20 13:53:50 2022 +0200
tree	c4abb6a83f6322efdcbd483cefe09c86fe7504a4
parent	30c5a2520eb558e8b40e745ae98c4a5aa91087cb [diff]