diff --git a/flatpak.changes b/flatpak.changes
index 45aff4e..4cc42b3 100644
--- a/flatpak.changes
+++ b/flatpak.changes
@@ -5,13 +5,13 @@ Thu Mar 16 16:15:42 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com>
   + Escape special characters when displaying permissions and
     metadata, preventing malicious apps from manipulating the
     appearance of the permissions list using crafted metadata
-    (CVE-2023-28101).
+    (CVE-2023-28101, boo#1209410).
   + If a Flatpak app is run on a Linux virtual console (tty1, tty2,
     etc.), don't allow copy/paste via the TIOCLINUX ioctl
     (CVE-2023-28100). Note that this is specific to virtual
     consoles: Flatpak is not vulnerable to this if run from a
     graphical terminal emulator such as xterm, gnome-terminal or
-    Konsole.
+    Konsole. (boo#1209411)
   + Updated translations.
 
 -------------------------------------------------------------------