diff --git a/.python3.11.checksum b/.python3.11.checksum
index 0f46d214aae21aba726f0d4961f8179a077fd5c5..436d83de3c910b927a59548e290114ba52fe2f2e 100644
--- a/.python3.11.checksum
+++ b/.python3.11.checksum
@@ -1 +1 @@
-3d059c2833a7a1186f43247a5a186fdfaed78712e28ef59ae3cfd7ca8580664b
+8f0885f79b76ba8e16b7df2fedb9df23290acfc1988156f777a77506a3f416f4
diff --git a/SPECS/python3.11.spec b/SPECS/python3.11.spec
index 8bffa67a93488e0928067d681cc7bf74818ec04a..011e2e40a8ff6107659cfe84acb731281b82e326 100644
--- a/SPECS/python3.11.spec
+++ b/SPECS/python3.11.spec
@@ -20,7 +20,7 @@ URL: https://www.python.org/
 #global prerel ...
 %global upstream_version %{general_version}%{?prerel}
 Version: %{general_version}%{?prerel:~%{prerel}}
-Release: 7%{?dist}
+Release: 7%{?dist}.1
 License: Python
 
 
@@ -398,6 +398,11 @@ Patch435: 00435-gh-121650-encode-newlines-in-headers-and-verify-headers-are-soun
 # [CVE-2024-8088] gh-122905: Sanitize names in zipfile.Path.
 Patch436: 00436-cve-2024-8088-gh-122905-sanitize-names-in-zipfile-path.patch
 
+# 00437 #
+# CVE-2024-6232: gh-121285: Remove backtracking when parsing tarfile headers
+# Resolved upstream: https://github.com/python/cpython/issues/121285
+Patch437: 00437-CVE-2024-6232.patch
+
 # (New patches go here ^^^)
 #
 # When adding new patches to "python" and "python3" in Fedora, EL, etc.,
@@ -1676,6 +1681,10 @@ CheckPython optimized
 # ======================================================
 
 %changelog
+* Wed Sep 11 2024 Lumír Balhar <lbalhar@redhat.com> - 3.11.9-7.1
+- Security fix for CVE-2024-6232
+Resolves: RHEL-57410
+
 * Fri Aug 23 2024 Charalampos Stratakis <cstratak@redhat.com> - 3.11.9-7
 - Security fix for CVE-2024-8088
 Resolves: RHEL-55959