diff --git a/sdk_container/src/third_party/coreos-overlay/changelog/security/2022-12-02-sudo-1.9.12_p1.md b/sdk_container/src/third_party/coreos-overlay/changelog/security/2022-12-02-sudo-1.9.12_p1.md
new file mode 100644
index 0000000000..0c0dc1403f
--- /dev/null
+++ b/sdk_container/src/third_party/coreos-overlay/changelog/security/2022-12-02-sudo-1.9.12_p1.md
@@ -0,0 +1 @@
+- sudo ([CVE-2022-43995](https://nvd.nist.gov/vuln/detail/CVE-2022-43995))
diff --git a/sdk_container/src/third_party/coreos-overlay/changelog/updates/2022-12-02-sudo-1.9.12_p1.md b/sdk_container/src/third_party/coreos-overlay/changelog/updates/2022-12-02-sudo-1.9.12_p1.md
new file mode 100644
index 0000000000..5cd76671f8
--- /dev/null
+++ b/sdk_container/src/third_party/coreos-overlay/changelog/updates/2022-12-02-sudo-1.9.12_p1.md
@@ -0,0 +1 @@
+- sudo ([1.9.12_p1](https://github.com/sudo-project/sudo/releases/tag/SUDO_1_9_12p1))