diff --git a/sources b/sources
index 44cb62d..5dde81a 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
-SHA512 (tor-0.3.5.13.tar.gz) = 6b5663ea84cde768f5dcc9b202f788a5d6dc2f48630118c61f3de25d91c4efb16f2082fbd5d43d88a5e55f8b234e5b9ac56fbfffbe99654075bc2e7a6724a1af
-SHA512 (tor-0.3.5.13.tar.gz.asc) = 4a62749548e4ee02b6ec58c08b42414f0920ae7356297371158aa6b30c2aaad51a1bf561bad4200e13d632d03424b8498283e050b926b67f1bc3bdc90cb79629
+SHA512 (tor-0.3.5.14.tar.gz) = ccd9227cd5946e68d982fa9bcbd501aafc0cd96fda84ba8c08149f676f7a966c2827df9499bba05e8f6f0d0190e01c469e409eb63e9fc7635d855ce36a637fe3
+SHA512 (tor-0.3.5.14.tar.gz.asc) = 65ede2aeaee7cf1dba596c7d5f38c2b665a3a6d75276d7d47dc66be293d488633f8e9e391c2b76b321a82cbb5901828568090ac004341d7bbf4ff2edfc35b65e
diff --git a/tor.spec b/tor.spec
index 6c7b4d3..a6ee469 100644
--- a/tor.spec
+++ b/tor.spec
@@ -19,7 +19,7 @@
 %endif
 
 Name:       tor
-Version:    0.3.5.13
+Version:    0.3.5.14
 Release:    1%{?dist}
 Group:      System Environment/Daemons
 License:    BSD
@@ -177,6 +177,39 @@ fi
 
 
 %changelog
+* Thu Mar 16 2021 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.14-1
+- update to latest upstream release (with security fixes!)
+
+* Thu Nov 12 2020 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.12-1
+- update to latest upstream release (bz#1897167)
+
+* Fri Jul 10 2020 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.11-1
+- update to latest upstream release (bz#1855385)
+
+* Thu Mar 19 2020 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.10-1
+- update to latest upstream release
+
+* Thu Feb 21 2019 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.8-1
+- update to latest upstream release (bz#1679732)
+
+* Mon Jan 07 2019 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.7-1
+- update to latest upstream release
+
+* Sat Sep 22 2018 Marcel Härry <mh+fedora@scrit.ch> - 0.2.9.17-1
+- Update to latest version
+
+* Sat Jul 14 2018 Marcel Härry <mh+fedora@scrit.ch> - 0.2.9.16-1
+- update to latest upstream stable release 0.2.9.16 (#1581512)
+
+* Sat Mar 03 2018 Marcel Härry <mh+fedora@scrit.ch> - 0.2.9.14-1
+- Update to latest version. Security-Fixes TROVE-2018-001, TROVE-2018-002,
+  TROVE-2018-003 and TROVE-2018-004
+
+* Sun Dec 03 2017 Marcel Härry <mh+fedora@scrit.ch> - 0.2.9.14-1
+- update to upstream release 0.2.9.14. Fixes:
+- CVE-2017-8819: Replay-cache ineffective for v2 onion services
+- CVE-2017-8820: Remote DoS attack against directory authorities
+- CVE-2017-8821: An attacker can make Tor ask for a password
 * Thu Feb 04 2021 Marcel Härry <mh+fedora@scrit.ch> - 0.3.5.13-1
 - update to latest upstream release