diff --git a/mod_auth_openidc-2.4.16.11.tar.gz b/mod_auth_openidc-2.4.16.11.tar.gz
deleted file mode 100644
index 8c2496491d992515b463e9dbbf310762d47d3f90..0000000000000000000000000000000000000000
Binary files a/mod_auth_openidc-2.4.16.11.tar.gz and /dev/null differ
diff --git a/mod_auth_openidc-2.4.17.tar.gz b/mod_auth_openidc-2.4.17.tar.gz
new file mode 100644
index 0000000000000000000000000000000000000000..b62cf39e4f8118bea063bb06f8151ebd1c772f39
Binary files /dev/null and b/mod_auth_openidc-2.4.17.tar.gz differ
diff --git a/mod_auth_openidc.spec b/mod_auth_openidc.spec
index ec0983bff2888750e2edea40504314d7ac874bcd..658ced630a1ec0e02dbe7f42c6f77522484181c1 100644
--- a/mod_auth_openidc.spec
+++ b/mod_auth_openidc.spec
@@ -6,7 +6,7 @@
 %global httpd_pkg_cache_dir /var/cache/httpd/mod_auth_openidc
 
 Name:           mod_auth_openidc
-Version:        2.4.16.11
+Version:        2.4.17
 Release:        1
 Summary:        OpenID Connect Relying Party module for Apache 2.x HTTP Server
 License:        Apache-2.0
@@ -60,6 +60,10 @@ install -m 700 -d $RPM_BUILD_ROOT%{httpd_pkg_cache_dir}/{metadata,cache}
 %dir %attr(0700, apache, apache) %{httpd_pkg_cache_dir}/{metadata,cache}
 
 %changelog
+* Mon Jul 07 2025  openeuler_bot <infra@openeuler.sh> - 2.4.17-1
+- 'fix memory leaks when using provider specific client keys in a multi-provider setup' (version:2.4.17)
+- 'pass the scope parameter as returned from the token endpoint in the OIDC_scope header/environment variable and make it available for `Require claim scope:` purposes' (version:2.4.17)
+
 * Wed Apr 09 2025 yaoxin <1024769339@qq.com> - 2.4.16.11-1
 - Update to 2.4.16.11 for fix CVE-2025-31492