From c3cb97896b7869f6587ed6537f7deaea8a124c88 Mon Sep 17 00:00:00 2001
From: Dave Rodgman <dave.rodgman@arm.com>
Date: Thu, 21 Sep 2023 10:25:01 +0100
Subject: [PATCH] Changelog for padding CT fixes

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
---
 ChangeLog.d/padding-ct-changelog.txt | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 ChangeLog.d/padding-ct-changelog.txt

diff --git a/ChangeLog.d/padding-ct-changelog.txt b/ChangeLog.d/padding-ct-changelog.txt
new file mode 100644
index 000000000..f89f479a7
--- /dev/null
+++ b/ChangeLog.d/padding-ct-changelog.txt
@@ -0,0 +1,6 @@
+Security
+   * Fix non-constant-time behaviour in padding calculations in CBC
+     decryption, NIST SP 800-38F key wrapping, and RSAAES-OAEP decryption.
+     For CBC and RSAAES-OAEP, this may have been exploitable in a
+     padding oracle for a privileged local attacker with the ability to
+     observe memory access timings.