doc: release/4.3: Add CVE under embargo

ceolin · ceolin · commit cf9eedc3398d · 2025-11-07T11:43:04.000-08:00
Add information about CVE-2025-12899 under embargo.

Signed-off-by: Flavio Ceolin &lt;flavio@hubblenetwork.com&gt;
diff --git a/doc/releases/release-notes-4.3.rst b/doc/releases/release-notes-4.3.rst
@@ -87,6 +87,7 @@ The following CVEs are addressed by this release:
 * :cve:`2025-9557`: Under embargo until 2025-11-24
 * :cve:`2025-9558`: Under embargo until 2025-11-24
 * :cve:`2025-12035`: Under embargo until 2025-12-13
+* :cve:`2025-12899`: Under embargo until 2026-01-28
 * :cve:`2025-59438` `Padding oracle through timing of cipher error reporting
   <https://mbed-tls.readthedocs.io/en/latest/security-advisories/mbedtls-security-advisory-2025-10-invalid-padding-error/>`_
 * :cve:`2025-54764` `Side channel in RSA key generation and operations (SSBleed, M-Step)
