diff --git a/neon-0.28.2.tar.bz2 b/neon-0.28.2.tar.bz2
deleted file mode 100644
index cc47bad..0000000
--- a/neon-0.28.2.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:f214cf87f6e2ccdb37cba096682e954204d296e23a4907f034b4016c333a7837
-size 590843
diff --git a/neon-0.28.2-bloat.patch b/neon-0.28.3-bloat.patch
similarity index 87%
rename from neon-0.28.2-bloat.patch
rename to neon-0.28.3-bloat.patch
index 98a5455..01db394 100644
--- a/neon-0.28.2-bloat.patch
+++ b/neon-0.28.3-bloat.patch
@@ -1,6 +1,6 @@
 --- neon-config.in
 +++ neon-config.in
-@@ -73,7 +73,7 @@ while test $# -gt 0; do
+@@ -73,7 +73,7 @@
         	;;
  
      --libs)
@@ -11,7 +11,7 @@
             LIBS="-L${libdir} ${LIBS}"
 --- neon.pc.in
 +++ neon.pc.in
-@@ -7,5 +7,5 @@ Name: neon
+@@ -7,5 +7,5 @@
  Description: HTTP/WebDAV client library
  Version: @NEON_VERSION@
  Libs.private: @NEON_LIBS@
diff --git a/neon-0.28.3.tar.bz2 b/neon-0.28.3.tar.bz2
new file mode 100644
index 0000000..9227800
--- /dev/null
+++ b/neon-0.28.3.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:555aa115489cd70741f2613704fb85cd24dade4d0b4ddc5940e78dbaa1b1dfb6
+size 592553
diff --git a/neon.changes b/neon.changes
index d74f195..6f8f92e 100644
--- a/neon.changes
+++ b/neon.changes
@@ -1,3 +1,20 @@
+-------------------------------------------------------------------
+Thu Aug 21 10:50:11 CEST 2008 - prusnak@suse.cz
+
+- updated to 0.28.3
+  * SECURITY (CVE-2008-3746): Fix potential NULL pointer dereference in
+    Digest domain parameter support; could allow a DoS by a malicious server
+  * Fix parsing of *-Authenticate response header with LWS after quoted value
+  * Fix ne_set_progress(, NULL, ) to match pre-0.27 behaviour (and not crash)
+  * Fix to disable Nagle on Win32 with newer toolchain (thanks to Stefan Küng)
+  * Fix build on Netware (Guenter Knauf)
+  * Document existing ne_uri_parse() API postcondition and ne_uri_resolve()
+    pre/postconditions regarding the ->path field in ne_uri structures
+  * Mark ne_{,buffer_}concat with sentinel attribute for GCC >= 4.
+  * Distinguish the error message for an SSL handshake which fails after a
+   client cert was requested.
+  * Compile with PIC flags by default even for static library builds
+
 -------------------------------------------------------------------
 Tue Jun  3 13:31:44 CEST 2008 - coolo@suse.de
 
diff --git a/neon.spec b/neon.spec
index b0c15a7..ef0847d 100644
--- a/neon.spec
+++ b/neon.spec
@@ -1,10 +1,17 @@
 #
-# spec file for package neon (Version 0.28.2)
+# spec file for package neon (Version 0.28.3)
 #
 # Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
-# This file and all modifications and additions to the pristine
-# package are under the same license as the package itself.
 #
+# All modifications and additions to the file contributed by third parties
+# remain the property of their copyright owners, unless otherwise agreed
+# upon. The license for this file, and modifications and additions to the
+# file, is the same license as for the pristine package itself (unless the
+# license for the pristine package is not an Open Source License, in which
+# case the license is the MIT License). An "Open Source License" is a
+# license that conforms to the Open Source Definition (Version 1.9)
+# published by the Open Source Initiative.
+
 # Please submit bugfixes or comments via http://bugs.opensuse.org/
 #
 
@@ -14,8 +21,8 @@
 Name:           neon
 BuildRequires:  libexpat-devel libopenssl-devel openssl zlib-devel
 Summary:        An HTTP and WebDAV Client Library
-Version:        0.28.2
-Release:        15
+Version:        0.28.3
+Release:        1
 License:        LGPL v2.1 or later
 Group:          Development/Libraries/Other
 Url:            http://www.webdav.org/neon
@@ -98,7 +105,7 @@ License:        GPL v2 or later
 Summary:        An HTTP and WebDAV Client Library
 Group:          Development/Libraries/Other
 Requires:       libneon27 = %{version} glibc-devel
-# renamed after oS 10.3
+# renamed after openSUSE 10.3
 Provides:       neon-devel = 0.27
 Obsoletes:      neon-devel < 0.27
 
@@ -152,20 +159,17 @@ sh autogen.sh
 
 %install
 make DESTDIR=$RPM_BUILD_ROOT docdir=%{_defaultdocdir}/%{name} install install-man install-html
-rm -f %{buildroot}%{_libdir}/*.la
-grep -r include %{buildroot}%{_includedir}
-%{buildroot}%{_bindir}/neon-config --libs
-# %check
+rm -f $RPM_BUILD_ROOT%{_libdir}/*.la
+
+%check
 # make check
 
 %clean
 rm -rf $RPM_BUILD_ROOT
 
-%post -n libneon27
-/sbin/ldconfig
+%post -n libneon27 -p /sbin/ldconfig
 
-%postun -n libneon27
-/sbin/ldconfig
+%postun -n libneon27 -p /sbin/ldconfig
 
 %files
 %defattr(-,root,root)
@@ -186,6 +190,20 @@ rm -rf $RPM_BUILD_ROOT
 %{_libdir}/pkgconfig/neon.pc
 
 %changelog
+* Thu Aug 21 2008 prusnak@suse.cz
+- updated to 0.28.3
+  * SECURITY (CVE-2008-3746): Fix potential NULL pointer dereference in
+  Digest domain parameter support; could allow a DoS by a malicious server
+  * Fix parsing of *-Authenticate response header with LWS after quoted value
+  * Fix ne_set_progress(, NULL, ) to match pre-0.27 behaviour (and not crash)
+  * Fix to disable Nagle on Win32 with newer toolchain (thanks to Stefan Küng)
+  * Fix build on Netware (Guenter Knauf)
+  * Document existing ne_uri_parse() API postcondition and ne_uri_resolve()
+  pre/postconditions regarding the ->path field in ne_uri structures
+  * Mark ne_{,buffer_}concat with sentinel attribute for GCC >= 4.
+  * Distinguish the error message for an SSL handshake which fails after a
+  client cert was requested.
+  * Compile with PIC flags by default even for static library builds
 * Tue Jun 03 2008 coolo@suse.de
 - require COPYING package
 * Sun May 18 2008 coolo@suse.de