diff --git a/firefox-102.3.0esr.source.tar.xz b/firefox-102.3.0esr.source.tar.xz
deleted file mode 100644
index 3c50684..0000000
--- a/firefox-102.3.0esr.source.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:308e23b6dcf964e342cf95fd0c8a386127371b620a489ae26e537d728341b55a
-size 478260896
diff --git a/firefox-102.3.0esr.source.tar.xz.asc b/firefox-102.3.0esr.source.tar.xz.asc
deleted file mode 100644
index f12e3ba..0000000
--- a/firefox-102.3.0esr.source.tar.xz.asc
+++ /dev/null
@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEEQ2D+IQnEl2MYb44h6+QekPbxL20FAmMfZeoACgkQ6+QekPbx
-L21Nrg//ROLe+jIhF/4NdFcva7NnsxmKQ5Ce8IIK9grfYsVlg5EAk6mtJzOmn6rO
-UWZ/fv/WwacUgL6Y7Kcw5+XarLkc6h/5VY9iAG1ATdEailmTWdmck+ftzajQd5ht
-EcwOwZ642HqF20VBCDTS4SFNxJ9QaYlbFY/f7NC1FxgSXY9p0OdpO+pyiBVLDZRd
-lfNUHjZOBDia6dgw23KEa4tKSjMPRs7wvxesBqH3PG8Z4EobFVWGG7eFl1y/EK7U
-oRmaMIaUuNvuAh7O5UbMFzCgyz/efQKvlVWueIotMpcNKto6sx3NDbMAEZmOs6LU
-PIjSt+jdZ+upq93RmuGIZFv+uS84QKKWk4Ye9krzmjmIllZ4lflQnBaa4bYnV6J7
-LH0+PsHpGiJ7l975yW2ATRBm66eQBWvUIycZxsBu2UPUDxxS1TiRaRoOqYZVyfHK
-q0QKHG93fIp0+UZzms/J0O+SPB6JdK2/ZWLXu1WOWp20fUSSPYkaqvI5uv5XKWBw
-JPhnSVtJS6CAaTJ5qB3iTHKbcMdtx/GzdqnNd06wJtQeWCOpWW123Yy7W+PykJud
-2uViC3L4u7tw82NA4hLWMQMfmkb0EF/bmoeCZwYVBgWej1ROhjIAFKg501PcGFg/
-aQdTadOiYHeHn7d7xA98pLX4+f64WQs9iG1qYIw52ek+xNFQri0=
-=Ejg/
------END PGP SIGNATURE-----
diff --git a/firefox-102.4.0esr.source.tar.xz b/firefox-102.4.0esr.source.tar.xz
new file mode 100644
index 0000000..0d5b4c7
--- /dev/null
+++ b/firefox-102.4.0esr.source.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e79f0ddd4914dfbff61c5eea7ff28ad2dd12ecfbf3d63a41dab57d50171d904e
+size 482118312
diff --git a/firefox-102.4.0esr.source.tar.xz.asc b/firefox-102.4.0esr.source.tar.xz.asc
new file mode 100644
index 0000000..a789057
--- /dev/null
+++ b/firefox-102.4.0esr.source.tar.xz.asc
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=vuJ1
+-----END PGP SIGNATURE-----
diff --git a/mozjs102.changes b/mozjs102.changes
index 0f2eaf0..6254a0f 100644
--- a/mozjs102.changes
+++ b/mozjs102.changes
@@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Tue Oct 18 14:14:17 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>
+
+- Update to version 102.4.0:
+  + Various stability, functionality, and security fixes.
+  + CVE-2022-42927: Same-origin policy violation could have leaked
+    cross-origin URLs.
+  + CVE-2022-42928: Memory Corruption in JS Engine.
+  + CVE-2022-42929: Denial of Service via window.print.
+  + CVE-2022-42932: Memory safety bugs fixed in Firefox 106 and
+    Firefox ESR 102.4.
+
 -------------------------------------------------------------------
 Tue Sep 27 14:13:15 UTC 2022 - Fabian Vogt <fvogt@suse.com>
 
@@ -8,6 +20,18 @@ Tue Sep 20 07:41:19 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>
 
 - Update to version 102.3.0:
   + Various stability, functionality, and security fixes.
+  + CVE-2022-3266: Out of bounds read when decoding H264.
+  + CVE-2022-40959: Bypassing FeaturePolicy restrictions on
+    transient pages.
+  + CVE-2022-40960: Data-race when parsing non-UTF-8 URLs in
+    threads.
+  + CVE-2022-40958: Bypassing Secure Context restriction for
+    cookies with __Host and __Secure prefix.
+  + CVE-2022-40956: Content-Security-Policy base-uri bypass.
+  + CVE-2022-40957: Incoherent instruction cache when building WASM
+    on ARM64.
+  + CVE-2022-40962: Memory safety bugs fixed in Firefox 105 and
+    Firefox ESR 102.3.
 
 -------------------------------------------------------------------
 Fri Aug 26 18:08:37 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com>
diff --git a/mozjs102.spec b/mozjs102.spec
index d7771b4..c32d49d 100644
--- a/mozjs102.spec
+++ b/mozjs102.spec
@@ -39,7 +39,7 @@ BuildArch:      i686
 %global big_endian 1
 %endif
 Name:           mozjs%{major}
-Version:        102.3.0
+Version:        102.4.0
 Release:        1%{?dist}
 Summary:        SpiderMonkey JavaScript library
 License:        MPL-2.0