diff --git a/Django-4.2.13.tar.gz b/Django-5.0.7.tar.gz
similarity index 57%
rename from Django-4.2.13.tar.gz
rename to Django-5.0.7.tar.gz
index 9a6317825512ca82f73b9e14855ac90dc5bc7366..866e2ef71ba368079054348d3308afd6dae338f7 100644
Binary files a/Django-4.2.13.tar.gz and b/Django-5.0.7.tar.gz differ
diff --git a/python-django.spec b/python-django.spec
index 725b9c138793d29b9b3eeb15598d5e2e6758860e..fa7c66c1da8c1da4ee5271f5868c36a0239b3b87 100644
--- a/python-django.spec
+++ b/python-django.spec
@@ -1,6 +1,6 @@
 %global _empty_manifest_terminate_build 0
 Name:		python-django
-Version:	4.2.13
+Version:	5.0.7
 Release:	1
 Summary:	A high-level Python Web framework that encourages rapid development and clean, pragmatic design.
 License:	Apache-2.0 and Python-2.0 and BSD-3-Clause
@@ -72,6 +72,15 @@ mv %{buildroot}/doclist.lst .
 %{_docdir}/*
 
 %changelog
+* Fri Jul 12 2024 yaoxin <yao_xin001@hoperun.com> - 5.0.7-1
+- Update to 5.0.7
+  * CVE-2024-38875: Potential denial-of-service vulnerability in django.utils.html.urlize()
+  * CVE-2024-39329: Username enumeration through timing difference for users with unusable passwords
+  * CVE-2024-39330: Potential directory-traversal via Storage.save()
+  * CVE-2024-39614: Potential denial-of-service vulnerability in get_supported_language_variant()
+  * Fixed a bug in Django 5.0 that caused a crash of Model.full_clean() on unsaved model instances
+    with a GeneratedField and certain defined Meta.constraints
+
 * Mon Jun 03 2024 xu_ping <707078654@qq.com> - 4.2.13-1
 - Upgrade version to 4.2.13