diff --git a/libksba-1.6.2.tar.bz2 b/libksba-1.6.2.tar.bz2
deleted file mode 100644
index 56ccde8..0000000
--- a/libksba-1.6.2.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:fce01ccac59812bddadffacff017dac2e4762bdb6ebc6ffe06f6ed4f6192c971
-size 667846
diff --git a/libksba-1.6.2.tar.bz2.sig b/libksba-1.6.2.tar.bz2.sig
deleted file mode 100644
index f141463..0000000
Binary files a/libksba-1.6.2.tar.bz2.sig and /dev/null differ
diff --git a/libksba-1.6.3.tar.bz2 b/libksba-1.6.3.tar.bz2
new file mode 100644
index 0000000..f8ddade
--- /dev/null
+++ b/libksba-1.6.3.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3f72c68db30971ebbf14367527719423f0a4d5f8103fc9f4a1c01a9fa440de5c
+size 668287
diff --git a/libksba-1.6.3.tar.bz2.sig b/libksba-1.6.3.tar.bz2.sig
new file mode 100644
index 0000000..aad7dc7
Binary files /dev/null and b/libksba-1.6.3.tar.bz2.sig differ
diff --git a/libksba.changes b/libksba.changes
index a6e0104..8e3c552 100644
--- a/libksba.changes
+++ b/libksba.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Fri Dec 23 08:15:38 UTC 2022 - Dirk Müller <dmueller@suse.com>
+
+- update to 1.6.3 (bsc#1206579, CVE-2022-47629):
+  * Fix another integer overflow in the CRL parser.
+   Release-info: https://dev.gnupg.org/T6304
+
 -------------------------------------------------------------------
 Mon Oct 17 12:45:32 UTC 2022 - Pedro Monreal <pmonreal@suse.com>
 
diff --git a/libksba.spec b/libksba.spec
index 0c6cd1f..00c96b7 100644
--- a/libksba.spec
+++ b/libksba.spec
@@ -18,7 +18,7 @@
 
 %define soname 8
 Name:           libksba
-Version:        1.6.2
+Version:        1.6.3
 Release:        0
 Summary:        A X.509 Library
 License:        (GPL-2.0-or-later OR LGPL-3.0-or-later) AND GPL-3.0-or-later AND MIT