diff --git a/_service b/_service
index 176fdc9..102c057 100644
--- a/_service
+++ b/_service
@@ -6,7 +6,7 @@
     <param name="versionformat">@PARENT_TAG@+git@TAG_OFFSET@.%h</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="versionrewrite-replacement">\1</param>
-    <param name="revision">v2.4.2</param>
+    <param name="revision">v2.4.3</param>
     <param name="changesgenerate">enable</param>
   </service>
 
diff --git a/_servicedata b/_servicedata
index 4717876..038adfb 100644
--- a/_servicedata
+++ b/_servicedata
@@ -1,6 +1,6 @@
 <servicedata>
   <service name="tar_scm">
     <param name="url">http://git.haproxy.org/git/haproxy-2.4.git</param>
-    <param name="changesrevision">553dee32630347e78cc3a33001c40d26d4245d23</param>
+    <param name="changesrevision">4dd5a5a6cb7f865f897bf945fba30b2498207520</param>
   </service>
 </servicedata>
\ No newline at end of file
diff --git a/haproxy-2.4.2+git0.553dee326.tar.gz b/haproxy-2.4.2+git0.553dee326.tar.gz
deleted file mode 100644
index 001bb8a..0000000
--- a/haproxy-2.4.2+git0.553dee326.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:50cc3c683a80d32d9f9e8d2ee36ef024f6f37a3544358fcb981800c652623a03
-size 3680837
diff --git a/haproxy-2.4.3+git0.4dd5a5a6c.tar.gz b/haproxy-2.4.3+git0.4dd5a5a6c.tar.gz
new file mode 100644
index 0000000..f0f17ad
--- /dev/null
+++ b/haproxy-2.4.3+git0.4dd5a5a6c.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:862f2934e84435ebc5a587d0b811b71721da04c242d025a38aded786d4efb517
+size 3686431
diff --git a/haproxy.changes b/haproxy.changes
index cc60a13..17b152c 100644
--- a/haproxy.changes
+++ b/haproxy.changes
@@ -1,3 +1,57 @@
+-------------------------------------------------------------------
+Tue Aug 17 15:50:01 UTC 2021 - mrueckert@suse.de
+
+- Update to version 2.4.3+git0.4dd5a5a6c:
+    CVE-2021-39240 CVE-2021-39241 CVE-2021-39242
+    (boo#1189366 boo#1189548 boo#1189549)
+  * [RELEASE] Released version 2.4.3
+  * REGTESTS: add a test to prevent h2 desync attacks
+  * BUG/MEDIUM: h2: give :authority precedence over Host
+  * BUG/MAJOR: h2: enforce stricter syntax checks on the :method pseudo-header
+  * BUG/MAJOR: h2: verify that :path starts with a '/' before concatenating it
+  * BUG/MAJOR: h2: verify early that non-http/https schemes match the valid syntax
+  * MINOR: http: add a new function http_validate_scheme() to validate a scheme
+  * DOC/MINOR: fix typo in management document
+  * CLEANUP: assorted typo fixes in the code and comments
+  * BUG/MEDIUM: cfgcheck: verify existing log-forward listeners during config check
+  * BUG/MEDIUM: spoe: Fix policy to close applets when SPOE connections are queued
+  * DOC: config: Fix 'http-response send-spoe-group' documentation
+  * DOC: Improve the lua documentation
+  * BUG/MINOR: tcpcheck: Properly detect pending HTTP data in output buffer
+  * BUG/MINOR: buffer: fix buffer_dump() formatting
+  * BUG/MEDIUM: spoe: Create a SPOE applet if necessary when the last one is released
+  * MINOR: spoe: Add a pointer on the filter config in the spoe_agent structure
+  * ADMIN: dyncookie: implement a simple dynamic cookie calculator
+  * MINOR: server: unmark deprecated on enable health/agent cli
+  * BUG/MINOR: server: update last_change on maint->ready transitions too
+  * BUG/MINOR: server: remove srv from px list on CLI 'add server' error
+  * BUILD: opentracing: fixed build when using pkg-config utility
+  * DOC: internals: document the FD takeover process
+  * BUG/MINOR: fd: protect fd state harder against a concurrent takeover
+  * BUG/MINOR: pollers: always program an update for migrated FDs
+  * BUG/MINOR: poll: fix abnormally high skip_fd counter
+  * BUG/MINOR: select: fix excess number of dead/skip reported
+  * BUG/MEDIUM: pollers: clear the sleeping bit after waking up, not before
+  * BUG/MEDIUM: connection: close a rare race between idle conn close and takeover
+  * BUG/MINOR: connection: Add missing error labels to conn_err_code_str
+  * BUG/MEDIUM: mux-h2: Handle remaining read0 cases on partial frames
+  * BUG/MINOR: mux-h1: Be sure to swap H1C to splice mode when rcv_pipe() is called
+  * BUG/MINOR: mux-h2: Obey dontlognull option during the preface
+  * BUG/MINOR: mux-h1: Obey dontlognull option for empty requests
+  * BUG/MINOR: systemd: must check the configuration using -Ws
+  * BUG/MINOR: resolvers: Use a null-terminated string to lookup in servers tree
+  * BUG/MINOR: check: fix the condition to validate a port-less server
+  * BUG/MINOR: stats: Add missing agent stats on servers
+  * BUG/MEDIUM: ssl_sample: fix segfault for srv samples on invalid request
+  * BUILD/MINOR: memprof fix macOs build.
+  * BUG/MINOR: mworker: do not export HAPROXY_MWORKER_REEXEC across programs
+  * BUG/MEDIUM: mworker: do not register an exit handler if exit is expected
+  * BUILD: lua: silence a build warning with TCC
+  * BUILD: add detection of missing important CFLAGS
+  * BUG/MINOR: ssl: Default-server configuration ignored by server
+  * MINOR: mux_h2: define config to disable h2 websocket support
+  * BUILD: http_htx: fix ci compilation error with isdigit for Windows
+
 -------------------------------------------------------------------
 Wed Jul 07 23:30:56 UTC 2021 - mrueckert@suse.de
 
diff --git a/haproxy.spec b/haproxy.spec
index 1ab1ae5..1d2cd4c 100644
--- a/haproxy.spec
+++ b/haproxy.spec
@@ -53,7 +53,7 @@
 %endif
 
 Name:           haproxy
-Version:        2.4.2+git0.553dee326
+Version:        2.4.3+git0.4dd5a5a6c
 Release:        0
 #
 #