diff --git a/krb5-1.11.3.tar.bz2 b/krb5-1.11.3.tar.bz2
deleted file mode 100644
index 87e06d4..0000000
--- a/krb5-1.11.3.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:3c96e54a2975ce4556703f0f13605ef0f3d697a7a332ff00da00e6dd53625488
-size 9440735
diff --git a/krb5-1.11.4.tar.bz2 b/krb5-1.11.4.tar.bz2
new file mode 100644
index 0000000..71f919c
--- /dev/null
+++ b/krb5-1.11.4.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1d9ef56b9280c5af103e24310a2bc79fca8de40fd4ebc1edae3d21e59c6afda3
+size 9449691
diff --git a/krb5-mini.changes b/krb5-mini.changes
index 2804a46..804b407 100644
--- a/krb5-mini.changes
+++ b/krb5-mini.changes
@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Fri Nov 15 13:35:09 UTC 2013 - ckornacker@suse.com
+
+- update to version 1.11.4
+  - Fix a KDC null pointer dereference [CVE-2013-1417] that could
+    affect realms with an uncommon configuration.
+  - Fix a KDC null pointer dereference [CVE-2013-1418] that could
+    affect KDCs that serve multiple realms.
+  - Fix a number of bugs related to KDC master key rollover.
+
 -------------------------------------------------------------------
 Mon Jun 24 16:21:07 UTC 2013 - mc@suse.com
 
diff --git a/krb5-mini.spec b/krb5-mini.spec
index edfbde0..5d24e1d 100644
--- a/krb5-mini.spec
+++ b/krb5-mini.spec
@@ -17,7 +17,7 @@
 
 
 %define build_mini 1
-%define srcRoot krb5-1.11.3
+%define srcRoot krb5-1.11.4
 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/
 %define krb5docdir  %{_defaultdocdir}/krb5
 
@@ -31,7 +31,7 @@ BuildRequires:  keyutils-devel
 BuildRequires:  libcom_err-devel
 BuildRequires:  libselinux-devel
 BuildRequires:  ncurses-devel
-Version:        1.11.3
+Version:        1.11.4
 Release:        0
 Summary:        MIT Kerberos5 Implementation--Libraries
 License:        MIT
diff --git a/krb5.changes b/krb5.changes
index 2804a46..aa5dc90 100644
--- a/krb5.changes
+++ b/krb5.changes
@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Fri Nov 15 13:33:53 UTC 2013 - ckornacker@suse.com
+
+- update to version 1.11.4
+  - Fix a KDC null pointer dereference [CVE-2013-1417] that could
+    affect realms with an uncommon configuration.
+  - Fix a KDC null pointer dereference [CVE-2013-1418] that could
+    affect KDCs that serve multiple realms.
+  - Fix a number of bugs related to KDC master key rollover.
+
 -------------------------------------------------------------------
 Mon Jun 24 16:21:07 UTC 2013 - mc@suse.com
 
diff --git a/krb5.spec b/krb5.spec
index 6420478..8c366d6 100644
--- a/krb5.spec
+++ b/krb5.spec
@@ -17,7 +17,7 @@
 
 
 %define build_mini 0
-%define srcRoot krb5-1.11.3
+%define srcRoot krb5-1.11.4
 %define vendorFiles %{_builddir}/%{srcRoot}/vendor-files/
 %define krb5docdir  %{_defaultdocdir}/krb5
 
@@ -31,7 +31,7 @@ BuildRequires:  keyutils-devel
 BuildRequires:  libcom_err-devel
 BuildRequires:  libselinux-devel
 BuildRequires:  ncurses-devel
-Version:        1.11.3
+Version:        1.11.4
 Release:        0
 Summary:        MIT Kerberos5 Implementation--Libraries
 License:        MIT