diff --git a/.cvsignore b/.cvsignore
index a51ec3e..e015b0c 100644
--- a/.cvsignore
+++ b/.cvsignore
@@ -1 +1 @@
-clamav-0.93.3-norar.tar.bz2
+clamav-0.94-norar.tar.bz2
diff --git a/clamav.spec b/clamav.spec
index aa1497f..f8d8778 100644
--- a/clamav.spec
+++ b/clamav.spec
@@ -18,7 +18,7 @@
 
 Summary:	End-user tools for the Clam Antivirus scanner
 Name:		clamav
-Version:	0.93.3
+Version:	0.94
 Release:	%release_func 1%{?snapshot:.%snapshot}
 
 License:	%{?with_unrar:proprietary}%{!?with_unrar:GPLv2}
@@ -548,6 +548,13 @@ test "$1"  = 0 || %_initrddir/clamav-milter condrestart >/dev/null || :
 
 
 %changelog
+* Sun Oct 26 2008 Robert Scheck <robert@fedoraproject.org> - 0.94-1
+- Upgrade to 0.94 (SECURITY), fixes #461461:
+- CVE-2008-1389 Invalid memory access in the CHM unpacker
+- CVE-2008-3912 Out-of-memory NULL pointer dereference in mbox/msg
+- CVE-2008-3913 Memory leak in code path in freshclam's manager.c
+- CVE-2008-3914 Multiple file descriptor leaks on the code paths
+
 * Sun Jul 13 2008 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.93.3-1
 - updated to 0.93.3; another fix for CVE-2008-2713 (out-of-bounds read
   on petite files)
diff --git a/sources b/sources
index 7ccec62..ec908dc 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-53d288ddafd9cc198eeb69ffe8c83d02  clamav-0.93.3-norar.tar.bz2
+a2ace45354b5b44bb334a0bfe8416e14  clamav-0.94-norar.tar.bz2