diff --git a/sdk_container/src/third_party/coreos-overlay/changelog/security/2022-07-11-gnupg-2.2.35.md b/sdk_container/src/third_party/coreos-overlay/changelog/security/2022-07-11-gnupg-2.2.35.md
new file mode 100644
index 0000000000..a13b6994c0
--- /dev/null
+++ b/sdk_container/src/third_party/coreos-overlay/changelog/security/2022-07-11-gnupg-2.2.35.md
@@ -0,0 +1 @@
+- gnupg ([CVE-2022-34903](https://nvd.nist.gov/vuln/detail/CVE-2022-34903))
diff --git a/sdk_container/src/third_party/coreos-overlay/changelog/updates/2022-07-11-gnupg-2.2.35-update.md b/sdk_container/src/third_party/coreos-overlay/changelog/updates/2022-07-11-gnupg-2.2.35-update.md
new file mode 100644
index 0000000000..918e2a733a
--- /dev/null
+++ b/sdk_container/src/third_party/coreos-overlay/changelog/updates/2022-07-11-gnupg-2.2.35-update.md
@@ -0,0 +1 @@
+- gnupg ([2.2.35](https://dev.gnupg.org/T5928))