diff --git a/sdk_container/src/third_party/portage-stable/changelog/security/2023-01-18-git-2.38.3.md b/sdk_container/src/third_party/portage-stable/changelog/security/2023-01-18-git-2.38.3.md
new file mode 100644
index 0000000000..1b442f0a3c
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/changelog/security/2023-01-18-git-2.38.3.md
@@ -0,0 +1 @@
+- git ([CVE-2022-23521](https://nvd.nist.gov/vuln/detail/CVE-2022-23521), [CVE-2022-41903](https://nvd.nist.gov/vuln/detail/CVE-2022-41903))
diff --git a/sdk_container/src/third_party/portage-stable/changelog/updates/2022-01-18-git-2.38.3.md b/sdk_container/src/third_party/portage-stable/changelog/updates/2022-01-18-git-2.38.3.md
new file mode 100644
index 0000000000..44b023074d
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/changelog/updates/2022-01-18-git-2.38.3.md
@@ -0,0 +1 @@
+- git ([2.38.3](https://github.com/git/git/blob/v2.38.3/Documentation/RelNotes/2.38.3.txt))