diff --git a/xen.spec b/xen.spec
index 27a02b4..ad81188 100644
--- a/xen.spec
+++ b/xen.spec
@@ -837,9 +837,11 @@ rm -rf %{buildroot}
 
 %changelog
 * Thu Feb 06 2014 Michael Young <m.a.young@durham.ac.uk> - 4.3.1-9
-- integer overflow in several XSM/Flask hypercalls [XSA-84]
-- Off-by-one error in FLASK_AVC_CACHESTAT hypercall [XSA-85]
-- libvchan failure handling malicious ring indexes [XSA-86]
+- integer overflow in several XSM/Flask hypercalls [XSA-84, CVE-2014-1891,
+    CVE-2014-1892, CVE-2014-1893, CVE-2014-1894]
+  Off-by-one error in FLASK_AVC_CACHESTAT hypercall [XSA-85, CVE-2014-1895]
+  libvchan failure handling malicious ring indexes [XSA-86, CVE-2014-1896]
+    (#1062335)
 
 * Fri Jan 24 2014 Michael Young <m.a.young@durham.ac.uk> - 4.3.1-8
 - PHYSDEVOP_{prepare,release}_msix exposed to unprivileged pv guests