diff --git a/CHANGELOG.md b/CHANGELOG.md
index 36cd5a450..cd6e8de4d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,13 +2,13 @@
 
 ### 0.12.6
 
-
 This patch release:
 
 * Ensures that after successful JWS signature verification, an application-configured Base64Url `Decoder` output is
   used to construct a `Jws` instance (instead of JJWT's default decoder). See
   [Issue 947](https://github.com/jwtk/jjwt/issues/947).
-* Fixes a GZIPInputStream memory leak surfaced in the 0.12.0 release. See [Issue 949](https://github.com/jwtk/jjwt/issues/949).
+* Fixes a GZIPInputStream decompression memory leak introduced in 0.12.0 that surfaces only in 
+  concurrent/multi-threaded environments (when decompressing JWTs with `zip` header of `GZIP`). See [Issue 949](https://github.com/jwtk/jjwt/issues/949).
 
 ### 0.12.5