diff --git a/_service b/_service
index 0a60d84..b36be64 100644
--- a/_service
+++ b/_service
@@ -2,7 +2,7 @@
   <service name="tar_scm" mode="disabled">
     <param name="url">https://github.com/aquasecurity/trivy</param>
     <param name="scm">git</param>
-    <param name="revision">v0.37.2</param>
+    <param name="revision">v0.37.3</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="changesgenerate">enable</param>
diff --git a/_servicedata b/_servicedata
index ffa5694..a519c45 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/aquasecurity/trivy</param>
-              <param name="changesrevision">12b563b9749afbc41790a2461984802a3d6a2f82</param></service></servicedata>
\ No newline at end of file
+              <param name="changesrevision">85d5d61bc7f69e3bc0eec9d52b6aa47f53797cc3</param></service></servicedata>
\ No newline at end of file
diff --git a/trivy-0.37.2.tar.zst b/trivy-0.37.2.tar.zst
deleted file mode 100644
index 89913ea..0000000
--- a/trivy-0.37.2.tar.zst
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:50b2ddccf047e40f21f9e4db987863f1f3cb19bee13ccfe0cfc4558aea5dc646
-size 44670940
diff --git a/trivy-0.37.3.tar.zst b/trivy-0.37.3.tar.zst
new file mode 100644
index 0000000..fb9225b
--- /dev/null
+++ b/trivy-0.37.3.tar.zst
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:bd80a24159665a4dc0b72508370831e5e02cb65e738dde90425753718956da49
+size 44670009
diff --git a/trivy.changes b/trivy.changes
index 0f317c5..d4f2f09 100644
--- a/trivy.changes
+++ b/trivy.changes
@@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Wed Feb 15 08:39:40 UTC 2023 - dmueller@suse.com
+
+- Update to version 0.37.3 (bsc#1208091, CVE-2023-25165):
+  * chore(helm): update Trivy from v0.36.1 to v0.37.2 (#3574)
+  * chore(deps): bump github.com/spf13/viper from 1.14.0 to 1.15.0 (#3536)
+  * chore(deps): bump golang/x/mod to v0.8.0 (#3606)
+  * chore(deps): bump golang.org/x/crypto from 0.3.0 to 0.5.0 (#3529)
+  * chore(deps): bump helm.sh/helm/v3 from 3.10.3 to 3.11.1 (#3580)
+  * ci: quote pros in c++ for semantic pr (#3605)
+  * fix(image): check proxy settings from env for remote images (#3604)
+
 -------------------------------------------------------------------
 Fri Feb 10 06:19:47 UTC 2023 - kastl@b1-systems.de
 
diff --git a/trivy.spec b/trivy.spec
index d06a861..5d09b62 100644
--- a/trivy.spec
+++ b/trivy.spec
@@ -19,7 +19,7 @@
 
 %global goipath github.com/aquasecurity/trivy
 Name:           trivy
-Version:        0.37.2
+Version:        0.37.3
 Release:        0
 Summary:        A Simple and Comprehensive Vulnerability Scanner for Containers
 License:        Apache-2.0
diff --git a/vendor.tar.zst b/vendor.tar.zst
index 9ccc3eb..5f5ddf1 100644
--- a/vendor.tar.zst
+++ b/vendor.tar.zst
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:f2416998680d405b5b82c4165e25f50707646903c8239d83924cd51b71a3060a
-size 41377280
+oid sha256:10939084d010846ec0698a21a9f2fbc45114fdea79fde411f59cf30467e4c2c0
+size 41289459