diff --git a/debian/changelog b/debian/changelog
index f1d932aa7..0cd356096 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -363,6 +363,7 @@ linux (4.14.7-1) UNRELEASED; urgency=medium
     - ASN.1: fix out-of-bounds read when parsing indefinite length item
     - ASN.1: check for error from ASN1_OP_END__ACT actions
     - KEYS: add missing permission check for request_key() destination
+      (CVE-2017-17807)
     - KEYS: reject NULL restriction string when type is specified
     - X.509: reject invalid BIT STRING for subjectPublicKey
     - X.509: fix comparisons of ->pkey_algo