diff --git a/python313.changes b/python313.changes
index a9124b5..d098403 100644
--- a/python313.changes
+++ b/python313.changes
@@ -55,7 +55,8 @@ Mon Jun  9 21:24:09 UTC 2025 - Matej Cepl <mcepl@cepl.eu>
       bypassed using crafted symlinks and hard links.
       Addresses CVE-2024-12718 (bsc#1244056), CVE-2025-4138
       (bsc#1244059), CVE-2025-4330 (bsc#1244060), and
-      CVE-2025-4517 (bsc#1244032).
+      CVE-2025-4517 (bsc#1244032). Also addresses CVE-2025-4435
+      (gh#135034, bsc#1244061).
     - gh-133767: Fix use-after-free in the “unicode-escape”
       decoder with a non-“strict” error handler (CVE-2025-4516,
       bsc#1243273).