diff --git a/git-2.40.0.tar.sign b/git-2.40.0.tar.sign
deleted file mode 100644
index 3afdc6c..0000000
Binary files a/git-2.40.0.tar.sign and /dev/null differ
diff --git a/git-2.40.0.tar.xz b/git-2.40.0.tar.xz
deleted file mode 100644
index 682728b..0000000
--- a/git-2.40.0.tar.xz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b17a598fbf58729ef13b577465eb93b2d484df1201518b708b5044ff623bf46d
-size 7183692
diff --git a/git-2.40.1.tar.sign b/git-2.40.1.tar.sign
new file mode 100644
index 0000000..37deeec
Binary files /dev/null and b/git-2.40.1.tar.sign differ
diff --git a/git-2.40.1.tar.xz b/git-2.40.1.tar.xz
new file mode 100644
index 0000000..9b13a0b
--- /dev/null
+++ b/git-2.40.1.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:4893b8b98eefc9fdc4b0e7ca249e340004faa7804a433d17429e311e1fef21d2
+size 7185260
diff --git a/git.changes b/git.changes
index b93bbe0..cea7a02 100644
--- a/git.changes
+++ b/git.changes
@@ -1,3 +1,22 @@
+-------------------------------------------------------------------
+Tue Apr 25 20:43:30 UTC 2023 - Andreas Stieger <Andreas.Stieger@gmx.de>
+
+- git 2.40.1:
+  * CVE-2023-25652: By feeding specially crafted input to git apply
+    --reject, a path outside the working tree can be overwritten
+    with partially controlled contents (corresponding to the
+    rejected hunk(s) from the given patch).
+  * CVE-2023-25815: When Git is compiled with runtime prefix
+    support and runs without translated messages, it still used
+    the gettext machinery to display messages, which subsequently
+    potentially looked for translated messages in unexpected
+    places. This allowed for malicious placement of crafted
+    messages.
+  * CVE-2023-29007: When renaming or deleting a section from a
+    configuration file, certain malicious configuration values may
+    be misinterpreted as the beginning of a new configuration
+    section, leading to arbitrary configuration injection.
+
 -------------------------------------------------------------------
 Thu Apr  6 10:51:06 UTC 2023 - Adam Majer <adam.majer@suse.de>
 
diff --git a/git.spec b/git.spec
index 2f07ff9..2ccce26 100644
--- a/git.spec
+++ b/git.spec
@@ -36,7 +36,7 @@
 %bcond_with    asciidoctor
 %endif
 Name:           git
-Version:        2.40.0
+Version:        2.40.1
 Release:        0
 Summary:        Fast, scalable, distributed revision control system
 License:        GPL-2.0-only