diff --git a/clamav.changes b/clamav.changes
index 08d63c5..b6d4d74 100644
--- a/clamav.changes
+++ b/clamav.changes
@@ -4,19 +4,19 @@ Thu May  5 15:50:42 UTC 2022 - Arjen de Korte <suse+build@de-korte.org>
 - Update to 0.103.6
   * CVE-2022-20770: Fixed a possible infinite loop vulnerability in the CHM
     file parser. Issue affects versions 0.104.0 through 0.104.2 and LTS
-    version 0.103.5 and prior versions.
+    version 0.103.5 and prior versions. (boo#1199242)
   * CVE-2022-20796: Fixed a possible NULL-pointer dereference crash in the
     scan verdict cache check. Issue affects versions 0.103.4, 0.103.5,
-    0.104.1, and 0.104.2.
+    0.104.1, and 0.104.2. (boo#1199246)
   * CVE-2022-20771: Fixed a possible infinite loop vulnerability in the
     TIFF file parser. Issue affects versions 0.104.0 through 0.104.2 and
     LTS version 0.103.5 and prior versions. The issue only occurs if the
     "--alert-broken-media" ClamScan option is enabled. For ClamD, the
     affected option is "AlertBrokenMedia yes", and for libclamav it is the
-    "CL_SCAN_HEURISTIC_BROKEN_MEDIA" scan option.
+    "CL_SCAN_HEURISTIC_BROKEN_MEDIA" scan option. (boo#1199244)
   * CVE-2022-20785: Fixed a possible memory leak in the HTML file parser /
     Javascript normalizer. Issue affects versions 0.104.0 through 0.104.2
-    and LTS version 0.103.5 and prior versions.
+    and LTS version 0.103.5 and prior versions. (boo#1199245)
   * CVE-2022-20792: Fixed a possible multi-byte heap buffer overflow write
     vulnerability in the signature database load module. The fix was to
     update the vendored regex library to the latest version. Issue affects