diff --git a/nextcloud-16.0.1.tar.bz2 b/nextcloud-16.0.1.tar.bz2
deleted file mode 100644
index 3001940..0000000
--- a/nextcloud-16.0.1.tar.bz2
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:a80ce586e9e930b2fba69707311e575346cd4dc4402e84678c730f9930d78aee
-size 102865395
diff --git a/nextcloud-16.0.3.tar.bz2 b/nextcloud-16.0.3.tar.bz2
new file mode 100644
index 0000000..1f6674d
--- /dev/null
+++ b/nextcloud-16.0.3.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a13f68ce47a1362318629ba5b118a59fa98358bb18f4afc371ea15104f2881f3
+size 61612508
diff --git a/nextcloud.changes b/nextcloud.changes
index 4dba746..14648df 100644
--- a/nextcloud.changes
+++ b/nextcloud.changes
@@ -1,3 +1,93 @@
+-------------------------------------------------------------------
+Tue Jul  9 14:36:14 UTC 2019 - ecsos@opensuse.org
+
+- Update to 16.0.3
+  - Do not fail hard on new user mail error (server#16189)
+  - Fix redirect after rescanFailedIntegrityCheck to "Overview" 
+    page (server#16244)
+  - Fix permissions for drag-n-drop uploads (server#16249)
+  - Try to delete the cypress folder of the viewer app 
+    (server#16297)
+  - Send browser notifications again (notifications#373)
+
+-------------------------------------------------------------------
+Thu Jul  4 14:52:34 UTC 2019 - ecsos@opensuse.org
+
+- Update to 16.0.2
+  - Update ca bundle (server#15553)
+  - Update ca bundle checker (server#15554)
+  - User management/subadmin: rephrase ambiguous error message 
+    (server#15575)
+  - Update shipped.json to include privacy and recommendations 
+    (server#15592)
+  - Show supported apps in app management (server#15593)
+  - Update CRL due to revoked cookbook.crt (server#15628)
+  - Only show sharing section if it has content (server#15649)
+  - Remove quota feedback if no link set (server#15666)
+  - Allow redis cluster to use password (server#15686)
+  - Don't run repair step for every individual user, outsource that
+    to background job (server#15718)
+  - Check the actual status code for 204 and 304 (server#15724)
+  - [Security] Bump tar from 2.2.1 to 2.2.2 (server#15728)
+  - Don't notify admins if no potentially over exposing links found
+    (server#15745)
+  - Also allow dragging below the file list (server#15754)
+  - Change text color in search box in darktheme, ref #15598 
+    (server#15768)
+  - Check for free space on touch (server#15772)
+  - Search files by id in shared storages last (server#15799)
+  - Hide newFile menu if quota is set to 0B (server#15856)
+  - Add core/js/dist/ to l10nignore (server#15948)
+  - Add LDAP integr. test for receiving share candidates with 
+    group limitation (server#15984)
+  - Remove auto focus of share input field on dialog open, 
+    fix #15261 (server#16010)
+  - LDAP) API: return one base properly when multiple are 
+    configured (server#16015)
+  - Handle storage exceptions when trying to set mtime 
+    (server#16038)
+  - Fix LDAP Wizard forgetting groups on select with search
+    (server#16051)
+  - Revert "Fix userid casting in notifications" (server#16068)
+  - Fix appid argument for integrity:check-app (server#16080)
+  - Fix full text search for groupfolders (server#16082)
+  - Fall back to black for non-color values (server#16089)
+  - Check if uploading to lookup server is enabled before verifying
+    (server#16091)
+  - Allow apps to store longer messages in the comments API 
+    (server#16105)
+  - Invalidates user when plugin reported deletion success
+    (server#16112)
+  - Fix download link included in public share page with hidden
+    download (server#16125)
+  - Better check reshare permissions (server#16127)
+  - Verify that paths are valid for recursive local move 
+    (server#16128)
+  - Don't allow to disable encryption via the API (server#16133)
+  - Do not show a internet connectivity warning if internet access 
+    is dis… (server#16146)
+  - Update Nextcloud version in docs link (server#16157)
+  - Allow apps to overwrite the maximum length when reading from 
+    database (server#16177)
+  - RefreshWebcalJob: replace ugly Regex with standard php utils 
+    (server#16201)
+  - Better check reshare permissions part2 (server#16211)
+  - Fix "unshare group share from self" activity (activity#380)
+  - Fix load of character maps (files_pdfviewer#141)
+  - [Security] Bump axios from 0.18.0 to 0.18.1 
+    (firstrunwizard#192)
+  - Correctly show errors when setting the password (gallery#529)
+  - Blacklist using .noimage (gallery#533)
+  - Update dependabot deps in stable16 (notifications#359)
+  - Increase size of icon bubble for more visibility 
+    (notifications#368)
+  - Add app description to readme and appinfo (privacy#133)
+  - Catch and filter share that can't be found (recommendations#79)
+  - [Security] Bump axios from 0.18.0 to 0.18.1 
+    (recommendations#92)
+  - [Security] Bump tar from 2.2.1 to 2.2.2 (viewer#113)
+  - [Security] Bump axios from 0.18.0 to 0.19.0 (viewer#117)
+
 -------------------------------------------------------------------
 Thu May 16 15:48:08 UTC 2019 - ecsos@opensuse.org
 
diff --git a/nextcloud.spec b/nextcloud.spec
index efa2f08..0b0144b 100644
--- a/nextcloud.spec
+++ b/nextcloud.spec
@@ -49,7 +49,7 @@
 %endif
 
 Name:           nextcloud
-Version:        16.0.1
+Version:        16.0.3
 Release:        0
 Summary:        File hosting service
 License:        AGPL-3.0-only