diff --git a/python-requests.changes b/python-requests.changes
index 476e628..e3ff38c 100644
--- a/python-requests.changes
+++ b/python-requests.changes
@@ -1,3 +1,26 @@
+-------------------------------------------------------------------
+Mon Apr 20 12:25:21 UTC 2015 - mcihar@suse.cz
+
+- Update to 2.6.0:
+  - Fix handling of cookies on redirect. Previously a cookie without a host
+    value set would use the hostname for the redirected URL exposing requests
+    users to session fixation attacks and potentially cookie stealing. This was
+    disclosed privately by Matthew Daley of `BugFuzz <https://bugfuzz.com>`_.
+    An CVE identifier has not yet been assigned for this. This affects all
+    versions of requests from v2.1.0 to v2.5.3 (inclusive on both ends).
+  - Fix error when requests is an ``install_requires`` dependency and ``python
+    setup.py test`` is run. (#2462)
+  - Fix error when urllib3 is unbundled and requests continues to use the
+    vendored import location.
+  - Include fixes to ``urllib3``'s header handling.
+  - Requests' handling of unvendored dependencies is now more restrictive.
+  - Support bytearrays when passed as parameters in the ``files`` argument.
+    (#2468)
+  - Avoid data duplication when creating a request with ``str``, ``bytes``, or
+    ``bytearray`` input to the ``files`` argument.
+  - Revert changes to our vendored certificate bundle. For more context see
+    (#2455, #2456, and http://bugs.python.org/issue23476)
+
 -------------------------------------------------------------------
 Tue Feb 24 13:04:17 UTC 2015 - tbechtold@suse.com
 
diff --git a/python-requests.spec b/python-requests.spec
index ef12371..f2191d5 100644
--- a/python-requests.spec
+++ b/python-requests.spec
@@ -17,7 +17,7 @@
 
 
 Name:           python-requests
-Version:        2.5.2
+Version:        2.6.0
 Release:        0
 Url:            http://python-requests.org
 Summary:        Awesome Python HTTP Library That's Actually Usable
diff --git a/requests-2.5.2.tar.gz b/requests-2.5.2.tar.gz
deleted file mode 100644
index 14093b3..0000000
--- a/requests-2.5.2.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:306ead91d47a48b6a25d495d2495de99694641bd7d2cac5bcc405a8837c7a612
-size 455688
diff --git a/requests-2.6.0.tar.gz b/requests-2.6.0.tar.gz
new file mode 100644
index 0000000..e488fc2
--- /dev/null
+++ b/requests-2.6.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:1cdbed1f0e236f35ef54e919982c7a338e4fea3786310933d3a7887a04b74d75
+size 450389