diff --git a/2019/17xxx/CVE-2019-17571.json b/2019/17xxx/CVE-2019-17571.json
index e0e7f2e7552..8bfc70af9b1 100644
--- a/2019/17xxx/CVE-2019-17571.json
+++ b/2019/17xxx/CVE-2019-17571.json
@@ -178,6 +178,11 @@
                 "refsource": "MLIST",
                 "name": "[tika-dev] 20200111 [jira] [Resolved] (TIKA-3018) log4j 1.2 version used by Apache Tika 1.23 is vulnerable to CVE-2019-17571",
                 "url": "https://lists.apache.org/thread.html/rdec0d8ac1f03e6905b0de2df1d5fcdb98b94556e4f6cccf7519fdb26@%3Cdev.tika.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[debian-lts-announce] 20200112 [SECURITY] [DLA 2065-1] apache-log4j1.2 security update",
+                "url": "https://lists.debian.org/debian-lts-announce/2020/01/msg00008.html"
             }
         ]
     },