diff --git a/libqb.spec b/libqb.spec
index 527c21bbc8f093a3827222c7146f8dd732e3fe97..45b392f9e9e77e44bc7ad47f390b0d3a7dd2a75e 100644
--- a/libqb.spec
+++ b/libqb.spec
@@ -76,7 +76,12 @@ help documents for libqb package
 
 %changelog
 * Fri Feb 5 2021 yangzhuangzhuang <yangzhuangzhuang1@huawei.com> - 1.0.3-7
-- Fix CVE-2019-12779
+- Fix CVE-2019-12779 libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack。
+  CVE Link：https://nvd.nist.gov/vuln/detail/CVE-2019-12779
+  Community Patch Link：
+  https://github.com/ClusterLabs/libqb/commit/e322e98dc264bc5911d6fe1d371e55ac9f95a71e
+  https://github.com/ClusterLabs/libqb/commit/7cd7b06d52ac80c343f362c7e39ef75495439dfc
+  https://github.com/ClusterLabs/libqb/commit/6a4067c1d1764d93d255eccecfd8bf9f43cb0b4d
 
 * Tue Apr 27 2020 wangerfeng <wangerfeng5@huawei.com> - 1.0.3-6
 - Package init