From d1244932f11502e51a259cc9dfbcfb52200b8c8a Mon Sep 17 00:00:00 2001
From: Gilles Peskine <Gilles.Peskine@arm.com>
Date: Tue, 16 Sep 2025 10:39:29 +0200
Subject: [PATCH] We have a CVE ID

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
---
 ChangeLog.d/pkcs7-padding-error-leak.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ChangeLog.d/pkcs7-padding-error-leak.txt b/ChangeLog.d/pkcs7-padding-error-leak.txt
index 5d204d5bef..9193a0860e 100644
--- a/ChangeLog.d/pkcs7-padding-error-leak.txt
+++ b/ChangeLog.d/pkcs7-padding-error-leak.txt
@@ -2,4 +2,4 @@ Security
    * Fix a timing side channel in CBC-PKCS7 decryption that could
      allow an attacker who can submit chosen ciphertexts to recover
      some plaintexts through a timing-based padding oracle attack.
-     Credits to Beat Heeb from Oberon microsystems AG. CVE-TODO
+     Credits to Beat Heeb from Oberon microsystems AG. CVE-2025-59438