diff --git a/SPECS/gnutls.spec b/SPECS/gnutls.spec
index 9ec2d80..c3a7103 100644
--- a/SPECS/gnutls.spec
+++ b/SPECS/gnutls.spec
@@ -1,5 +1,5 @@
 Version:	3.6.14
-Release: 6%{?dist}
+Release: 7%{?dist}
 Patch1:	gnutls-3.2.7-rpath.patch
 Patch2:	gnutls-3.6.4-no-now-guile.patch
 Patch3:	gnutls-3.6.13-enable-intel-cet.patch
@@ -9,6 +9,9 @@ Patch6:	gnutls-3.6.14-fips-dh-primes.patch
 Patch7:	gnutls-3.6.14-memcmp.patch
 Patch8:	gnutls-3.6.14-fips-dh-check.patch
 Patch9:	gnutls-3.6.14-fix-iovec-memory-leak.patch
+Patch10:	gnutls-3.6.14-fips-dh-selftests.patch
+Patch11:	gnutls-3.6.14-fips-kdf-selftests.patch
+Patch12:	gnutls-3.6.14-no-renegotiation.patch
 %bcond_without dane
 %if 0%{?rhel}
 %bcond_with guile
@@ -292,6 +295,11 @@ fi
 %endif
 
 %changelog
+* Tue Nov  3 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-7
+- Increase DH key bits to >= 2048 in self-tests (#1879506)
+- Implement self-tests for KDF and CMAC (#1890870)
+- Fix CVE-2020-24659: heap buffer-overflow when "no_renegotiation" alert is received (#1873959)
+
 * Mon Aug 24 2020 Daiki Ueno <dueno@redhat.com> - 3.6.14-6
 - Fix memory leak when serializing iovec_t (#1844112)