diff --git a/icu.changes b/icu.changes
index 9e4390f..1379e85 100644
--- a/icu.changes
+++ b/icu.changes
@@ -192,6 +192,7 @@ Thu Apr 23 04:20:04 UTC 2020 - Ismail Dönmez <idonmez@suse.com>
   * Fixed uses of u8"literals" broken by the C++20 introduction of the incompatible char8_t type (ICU-20972),
   * and added a few API overloads to reduce the need for reinterpret_cast (ICU-20984).
   * Support for manipulating CLDR 37 unit identifiers in MeasureUnit.
+  * Fix potential integer overflow in UnicodeString:doAppend (bnc#1166844, CVE-2020-10531).
 
 -------------------------------------------------------------------
 Sun Mar 15 17:52:41 UTC 2020 - Jan Engelhardt <jengelh@inai.de>
@@ -205,6 +206,8 @@ Sun Mar 15 17:17:11 UTC 2020 - Ismail Dönmez <idonmez@suse.com>
   * Unicode 13 support
   * Fix uses of u8"literals" broken by C++20 introduction of
     incompatible char8_t type. (ICU-20972)
+  * use LocalMemory for cmd to prevent use after free
+    (bsc#1193951 CVE-2020-21913).
 
 -------------------------------------------------------------------
 Tue Feb 25 10:29:50 UTC 2020 - Jan Engelhardt <jengelh@inai.de>
@@ -246,7 +249,7 @@ Thu Apr 18 11:53:24 UTC 2019 - Jan Engelhardt <jengelh@inai.de>
   * This maintenance update for ICU 64 includes draft Unicode
     12.1 update, CLDR 35.1 locale data and support for the new
     Japanese era Reiwa (令和). (boo#1112183, bnc#1103893, 
-    FATE#325570)
+    FATE#325570, bnc#1103893, fate#325570, fate#325419).
 
 -------------------------------------------------------------------
 Mon Apr  1 08:22:59 UTC 2019 - Jan Engelhardt <jengelh@inai.de>