diff --git a/certifi-2020.6.20.tar.gz b/certifi-2020.6.20.tar.gz
deleted file mode 100644
index bafb932..0000000
Binary files a/certifi-2020.6.20.tar.gz and /dev/null differ
diff --git a/certifi-2023.7.22.tar.gz b/certifi-2023.7.22.tar.gz
new file mode 100644
index 0000000..7f62db5
Binary files /dev/null and b/certifi-2023.7.22.tar.gz differ
diff --git a/python-certifi.spec b/python-certifi.spec
index 783b2c0..1beb14b 100644
--- a/python-certifi.spec
+++ b/python-certifi.spec
@@ -1,11 +1,11 @@
 %global _empty_manifest_terminate_build 0
 Name:                python-certifi
-Version:             2020.6.20
+Version:             2023.7.22
 Release:             1
 Summary:             Python package for providing Mozilla's CA Bundle.
 License:             MPL-2.0
 URL:                 https://certifiio.readthedocs.io/en/latest/
-Source0:             https://files.pythonhosted.org/packages/40/a7/ded59fa294b85ca206082306bba75469a38ea1c7d44ea7e1d64f5443d67a/certifi-2020.6.20.tar.gz
+Source0:             https://files.pythonhosted.org/packages/source/c/certifi/certifi-%{version}.tar.gz
 BuildArch:           noarch
 
 
@@ -32,7 +32,7 @@ validating the trustworthiness of SSL certificates while verifying the identity
 of TLS hosts. It has been extracted from the `Requests`_ project.
 
 %prep
-%autosetup -n certifi-2020.6.20
+%autosetup -n certifi-%{version} -p1
 
 %build
 %py3_build
@@ -72,5 +72,8 @@ mv %{buildroot}/doclist.lst .
 %{_docdir}/*
 
 %changelog
+* Mon Jul 31 2023 yaoxin <yao_xin001@hoperun.com> - 2023.7.22-1
+- Update to 2023.7.22 for fix CVE-2023-37920 and CVE-2022-23491
+
 * Tue Aug 4 2020 wangxiao <wangxiao65@huawei.com> - 2020.6.20-1
 - package init