diff --git a/NEWS b/NEWS
index 2c3fce6e..237e5604 100644
--- a/NEWS
+++ b/NEWS
@@ -21,7 +21,7 @@ In addition, this release fixes a security vulnerability in the portal
 support. Some recently added syscalls were not blocked by the seccomp rules
 which allowed the application to create sub-sandboxes which can confuse
 the sandboxing verification mechanisms of the portal. This has been
-fixed by extending the seccomp rules.
+fixed by extending the seccomp rules. (CVE-2021-41133)
 For details, see:
   https://github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q