diff --git a/hiawatha-10.3.tar.gz b/hiawatha-10.3.tar.gz
new file mode 100644
index 0000000..605b72e
--- /dev/null
+++ b/hiawatha-10.3.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:99d185fb16bb1ab706724494d3cac86464f1485ed4b0fff09a192eca6da5ff8e
+size 897607
diff --git a/hiawatha-9.13.tar.gz b/hiawatha-9.13.tar.gz
deleted file mode 100644
index a8aaf79..0000000
--- a/hiawatha-9.13.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:6ae204199849340f8ec5a1becbc3f3d80f8d5280f1feff8a12a25f8bc40dc225
-size 840319
diff --git a/hiawatha.changes b/hiawatha.changes
index d670faf..d047f3a 100644
--- a/hiawatha.changes
+++ b/hiawatha.changes
@@ -1,3 +1,54 @@
+-------------------------------------------------------------------
+Sat Aug 27 11:43:20 UTC 2016 - mpluskal@suse.com
+
+- Update to version 10.3:
+  * PreventCSRF, PreventSQLi and PreventXSS improved.
+  * Prevention of MySQL data mining via SQL injection.
+  * Added revoke option to Let's Encrypt script.
+  * Hiawatha ignores RequireTLS for Let's Encrypt authentication
+    requests.
+  * Small bugfixes and improvements.
+  * Bugfix: possible HTTP request pipelining error after CSRF
+    prevented.
+- Changes for version 10.2:
+  * Added Let's Encrypt script (see extra/letsencrypt).
+  * Added support for requesting Let's Encrypt certificates (see
+    AccessList and PasswordFile settings in manual page).
+  * Small improvements.
+  * Bugfix: HideProxy not working for Forwarded header.
+- Changes for 10.1:
+  * Added Extensions setting.
+  * Added support for X-Sendfile header.
+  * mbed TLS updated to 2.2.1.
+  * Improved SQL injection detection.
+  * Small bugfixes and improvements.
+- Changes for 10.0:
+  * Usage of Directory sections changed.
+  * Added support for RFC 5785.
+  * Added support for GZip compression. Removed the UseGZfile
+    option.
+  * Added ECDSA support for TLS 1.0 and TLS 1.1.
+  * Replaced UrlToolkit Expire option with ExpirePeriod in
+    Directory section.
+  * Replaced IgnoreDotHiawatha option with UseLocalConfig.
+  * Removed the VolatileObject option.
+  * Improved SQL injection detection.
+  * mbed TLS updated to 2.2.0.
+  * Small improvements.
+- Changes for 9.15:
+  * Support for WebSockets via reverse proxy.
+  * UNIX socket support for connections to WebSockets.
+  * Responsive design for directory index and error message.
+  * mbed TLS updated to 2.1.2.
+  * Fixed mbed TLS linking in CMake configuration.
+  * ListenBacklog option added.
+  * Small bugfixes.
+- Changes for 9.14:
+  * mbed TLS updated to 2.0.0.
+  * Small bugfixes.
+  * Bugfix: crash when sending very large request to FastCGI
+    server.
+
 -------------------------------------------------------------------
 Sat Jun 20 09:28:30 UTC 2015 - mpluskal@suse.com
 
diff --git a/hiawatha.spec b/hiawatha.spec
index 1bf4025..fbd71d7 100644
--- a/hiawatha.spec
+++ b/hiawatha.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package hiawatha
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 # Copyright (c) 2013-2015 Mariusz Fik <fisiu@opensuse.org>.
 #
 # All modifications and additions to the file contributed by third parties
@@ -20,7 +20,7 @@
 %define webroot /srv/www
 
 Name:           hiawatha
-Version:        9.13
+Version:        10.3
 Release:        0
 Summary:        A secure and advanced webserver
 License:        GPL-2.0