diff --git a/cryptography-3.0.tar.gz b/cryptography-3.0.tar.gz
deleted file mode 100644
index 158a2f6..0000000
--- a/cryptography-3.0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:8e924dbc025206e97756e8903039662aa58aa9ba357d8e1d8fc29e3092322053
-size 534725
diff --git a/cryptography-3.0.tar.gz.asc b/cryptography-3.0.tar.gz.asc
deleted file mode 100644
index d17911b..0000000
--- a/cryptography-3.0.tar.gz.asc
+++ /dev/null
@@ -1,11 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQEzBAABCAAdFiEEBf2foWz3VzUNkaVgI1rl8Sn57ZgFAl8WGscACgkQI1rl8Sn5
-7ZiG/Af/dlShgMX5PLP6G+S9iXdSX9Zu6rlJUeQ8QkoaL268KoBe6Y+LHRwDoblk
-8iIwN3KYxNqVqEVrve/nr3ju5YoFWXjrA755W13j5ehLN1Tn+s9Apxe2Ye8OhSNa
-MrIdzWAMaEl2DpArr2zBxockEuLqb06Uj29YfYQKcmSKwFvzmJtozw1VscwyQS70
-GJ4MzWnbvIIbwpDlwNDiHkR8OE3JR5aDDuYdX0ADWHxK2ExCKS6kP4gI9pamVt6L
-RgmJKHfjrbv/hhgrg64PjXH8WRXMKDXs6j5zGRo6Gvg4gnyISvQF7+1piaIsp9bP
-BFyuqnIGeMqhwcC/dtGsq/fxJOHurw==
-=mZPL
------END PGP SIGNATURE-----
diff --git a/cryptography-3.2.1.tar.gz b/cryptography-3.2.1.tar.gz
new file mode 100644
index 0000000..6bc2da4
--- /dev/null
+++ b/cryptography-3.2.1.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:d3d5e10be0cf2a12214ddee45c6bd203dab435e3d83b4560c03066eda600bfe3
+size 540994
diff --git a/cryptography-3.2.1.tar.gz.asc b/cryptography-3.2.1.tar.gz.asc
new file mode 100644
index 0000000..015d7b2
--- /dev/null
+++ b/cryptography-3.2.1.tar.gz.asc
@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCAAdFiEEBf2foWz3VzUNkaVgI1rl8Sn57ZgFAl+Y4vIACgkQI1rl8Sn5
+7Zjevwf/U2fOwxUOJPN0/YBDqatPIu7sg+2+6m9rUecj01fjZIkeT9nuZBMenzxN
+JBLDKOcb24mQ+HjCKEq4TfzS43rgvaoXsClSQwO5/rmYYOR8IUMdK+NWjvOqYc6H
+0U3LhcZ/JakM5OoB7miOLCYE1o3EjikmT93QjEPENdul4a5h6an0HYPUvwHWX0ok
+XekBnkoe26gZE2pCQepcLd3KChmD0wwu9Zu1hV4zoVMVR19hnVuP6JWcCn+IdrAz
+p7ak9++3VSR2d4fDcObp20EXC6fJqMPvTFeM1k+krQ6JGFuRLktKW5NW3qu9WmnG
+b0RZa7sMTCpG4hdinsYPZvEvIY5pzQ==
+=/+zZ
+-----END PGP SIGNATURE-----
diff --git a/python-cryptography.changes b/python-cryptography.changes
index 17e50e0..e79cf2a 100644
--- a/python-cryptography.changes
+++ b/python-cryptography.changes
@@ -1,3 +1,50 @@
+-------------------------------------------------------------------
+Wed Oct 28 14:29:05 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- update to 3.2.1:
+  Disable blinding on RSA public keys to address an error with
+  some versions of OpenSSL.
+
+-------------------------------------------------------------------
+Mon Oct 26 11:39:02 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- update to 3.2:
+  * CVE-2020-25659: Attempted to make RSA PKCS#1v1.5 decryption more constant time,
+    to protect against Bleichenbacher vulnerabilities. Due to limitations imposed
+    by our API, we cannot completely mitigate this vulnerability.
+  * Support for OpenSSL 1.0.2 has been removed.
+  * Added basic support for PKCS7 signing (including SMIME) via PKCS7SignatureBuilder.
+
+-------------------------------------------------------------------
+Mon Sep 28 10:49:56 UTC 2020 - Dirk Mueller <dmueller@suse.com>
+
+- update to 3.1.1:
+  * wheels compiled with OpenSSL 1.1.1h. 
+
+-------------------------------------------------------------------
+Fri Sep 18 11:15:53 UTC 2020 - Dirk Mueller <dmueller@suse.com>
+
+- update to 3.1:
+  * **BACKWARDS INCOMPATIBLE:** Removed support for ``idna`` based
+    :term:`U-label` parsing in various X.509 classes. This support was originally
+    deprecated in version 2.1 and moved to an extra in 2.5.
+  * Deprecated OpenSSL 1.0.2 support. OpenSSL 1.0.2 is no longer supported by
+    the OpenSSL project. The next version of ``cryptography`` will drop support
+    for it.
+  * Deprecated support for Python 3.5. This version sees very little use and will
+    be removed in the next release.
+  * ``backend`` arguments to functions are no longer required and the
+    default backend will automatically be selected if no ``backend`` is provided.
+  * Added initial support for parsing certificates from PKCS7 files with
+    :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates`
+    and
+    :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates`
+    .
+  * Calling ``update`` or ``update_into`` on
+    :class:`~cryptography.hazmat.primitives.ciphers.CipherContext` with ``data``
+    longer than 2\ :sup:`31` bytes no longer raises an ``OverflowError``. This
+    also resolves the same issue in :doc:`/fernet`.
+
 -------------------------------------------------------------------
 Tue Jul 28 17:16:47 UTC 2020 - Ondřej Súkup <mimi.vx@gmail.com>
 
diff --git a/python-cryptography.spec b/python-cryptography.spec
index 480b051..65f2ea8 100644
--- a/python-cryptography.spec
+++ b/python-cryptography.spec
@@ -19,7 +19,7 @@
 %{?!python_module:%define python_module() python-%{**} python3-%{**}}
 %bcond_without python2
 Name:           python-cryptography
-Version:        3.0
+Version:        3.2.1
 Release:        0
 Summary:        Python library which exposes cryptographic recipes and primitives
 License:        Apache-2.0 OR BSD-3-Clause