diff --git a/zeromq-4.2.5.tar.gz b/zeromq-4.2.5.tar.gz
deleted file mode 100644
index 92df739..0000000
--- a/zeromq-4.2.5.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:cc9090ba35713d59bb2f7d7965f877036c49c5558ea0c290b0dcc6f2a17e489f
-size 1409447
diff --git a/zeromq-4.3.1.tar.gz b/zeromq-4.3.1.tar.gz
new file mode 100644
index 0000000..257b71e
--- /dev/null
+++ b/zeromq-4.3.1.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:bcbabe1e2c7d0eec4ed612e10b94b112dd5f06fcefa994a0c79a45d835cd21eb
+size 1490122
diff --git a/zeromq.changes b/zeromq.changes
index 6746116..6767797 100644
--- a/zeromq.changes
+++ b/zeromq.changes
@@ -1,3 +1,18 @@
+-------------------------------------------------------------------
+Mon Jan 14 10:11:47 UTC 2019 - adam.majer@suse.de
+
+- New upstream version 4.3.1:
+  * CVE-2019-6250: A vulnerability has been found that would allow
+    attackers to direct a peer to jump to and execute from an address
+    indicated by the attacker. (bsc#1121717)
+  * fixed race condition in ZMQ_PUSH when quickly disconnecting and
+    reconnecting causes last part of multi-part message to get
+    "stuck" and resent by mistake to the new socket.
+
+For complete set of changes, see,
+https://github.com/zeromq/libzmq/releases/tag/v4.3.1
+https://github.com/zeromq/libzmq/releases/tag/v4.3.0
+
 -------------------------------------------------------------------
 Tue Jul 10 11:54:56 UTC 2018 - dimstar@opensuse.org
 
diff --git a/zeromq.spec b/zeromq.spec
index b2b7aed..1cfe4fc 100644
--- a/zeromq.spec
+++ b/zeromq.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package zeromq
 #
-# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -23,7 +23,7 @@
 %bcond_with pgm
 %endif
 Name:           zeromq
-Version:        4.2.5
+Version:        4.3.1
 Release:        0
 Summary:        Lightweight messaging kernel
 License:        LGPL-3.0-or-later