diff --git a/changelog/security/2023-05-03-bash-update.md b/changelog/security/2023-05-03-bash-update.md
new file mode 100644
index 0000000000..1e5a013d6f
--- /dev/null
+++ b/changelog/security/2023-05-03-bash-update.md
@@ -0,0 +1 @@
+- bash ([CVE-2022-3715](https://nvd.nist.gov/vuln/detail/CVE-2022-3715))
diff --git a/changelog/updates/2023-05-03-bash-update.md b/changelog/updates/2023-05-03-bash-update.md
new file mode 100644
index 0000000000..b8aa353271
--- /dev/null
+++ b/changelog/updates/2023-05-03-bash-update.md
@@ -0,0 +1,3 @@
+- bash ([5.2](https://lists.gnu.org/archive/html/bash-announce/2022-09/msg00000.html))
+- readline ([8.2](https://lists.gnu.org/archive/html/info-gnu/2022-09/msg00013.html))
+- gdb ([13.1.90](https://lwn.net/Articles/923819/))