diff --git a/.gitignore b/.gitignore
index d89061c..6619392 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,6 @@
 SOURCES/cjs-module-lexer-1.2.2.tar.gz
 SOURCES/icu4c-71_1-src.tgz
-SOURCES/node-v16.20.1-stripped.tar.gz
+SOURCES/node-v16.20.2-stripped.tar.gz
 SOURCES/undici-5.20.0.tar.gz
 SOURCES/wasi-sdk-wasi-sdk-11.tar.gz
 SOURCES/wasi-sdk-wasi-sdk-14.tar.gz
diff --git a/.nodejs.metadata b/.nodejs.metadata
index 03d3c23..1aae78c 100644
--- a/.nodejs.metadata
+++ b/.nodejs.metadata
@@ -1,6 +1,6 @@
 b0a91341ecf6c68a9d59a1c57d000fbbcc771679 SOURCES/cjs-module-lexer-1.2.2.tar.gz
 406b0c8635288b772913b6ff646451e69748878a SOURCES/icu4c-71_1-src.tgz
-dd58f4942a016f232a06e36fae6cc43c387e2f66 SOURCES/node-v16.20.1-stripped.tar.gz
+f50d6a8dfc8d24c29091a8cf39221e6b4d21b0d8 SOURCES/node-v16.20.2-stripped.tar.gz
 a96c780a67c578c31e9c8d291e357b2ae98a0ce5 SOURCES/undici-5.20.0.tar.gz
 8979d177dd62e3b167a6fd7dc7185adb0128c439 SOURCES/wasi-sdk-wasi-sdk-11.tar.gz
 900a50a32f0079d53c299db92b88bb3c5d2022b8 SOURCES/wasi-sdk-wasi-sdk-14.tar.gz
diff --git a/SPECS/nodejs.spec b/SPECS/nodejs.spec
index 4f58cb5..66d95b5 100644
--- a/SPECS/nodejs.spec
+++ b/SPECS/nodejs.spec
@@ -35,7 +35,7 @@
 # This is used by both the nodejs package and the npm subpackage that
 # has a separate version - the name is special so that rpmdev-bumpspec
 # will bump this rather than adding .1 to the end.
-%global baserelease 1
+%global baserelease 2
 
 %{?!_pkgdocdir:%global _pkgdocdir %{_docdir}/%{name}-%{version}}
 
@@ -47,7 +47,7 @@
 %global nodejs_epoch 1
 %global nodejs_major 16
 %global nodejs_minor 20
-%global nodejs_patch 1
+%global nodejs_patch 2
 %global nodejs_abi %{nodejs_major}.%{nodejs_minor}
 # nodejs_soversion - from NODE_MODULE_VERSION in src/node_version.h
 %global nodejs_soversion 93
@@ -721,6 +721,15 @@ end
 
 
 %changelog
+* Wed Sep 06 2023 Masahiro Matsuya <mmatsuya@redhat.com> - 1:16.20.2-2
+- Bump Release. Need to rebuild with the updated nodejs-packaging
+  Resolves: rhbz#2237394
+
+* Fri Aug 18 2023 Dominik Rehák <drehak@redhat.com> - 1:16.20.2-1
+- Rebase to 16.20.2
+  Resolves: rhbz#2231866
+  Resolves: CVE-2023-32002 CVE-2023-32006 CVE-2023-32559
+
 * Thu Jul 13 2023 Jan Staněk <jstanek@redhat.com> - 1:16.20.1-1
 - Rebase to 16.20.1
   Resolves: rhbz#2188289