diff --git a/.gitignore b/.gitignore
index e080750..80db08d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-SOURCES/jss-4.9.3.tar.gz
+SOURCES/jss-4.9.4.tar.gz
diff --git a/.jss.metadata b/.jss.metadata
index 82391d0..e324348 100644
--- a/.jss.metadata
+++ b/.jss.metadata
@@ -1 +1 @@
-1b192965743c5f97b4ea2febb7afbb112fc77641 SOURCES/jss-4.9.3.tar.gz
+b99d8fd7a9296f7cf480ca92a097dcf18c41eb53 SOURCES/jss-4.9.4.tar.gz
diff --git a/SPECS/jss.spec b/SPECS/jss.spec
index fdbccd8..afb7716 100644
--- a/SPECS/jss.spec
+++ b/SPECS/jss.spec
@@ -2,13 +2,17 @@
 Name:           jss
 ################################################################################
 
+%global         major_version 4
+%global         minor_version 9
+%global         update_version 4
+
 Summary:        Java Security Services (JSS)
 URL:            http://www.dogtagpki.org/wiki/JSS
 License:        MPLv1.1 or GPLv2+ or LGPLv2+
 
 # For development (i.e. unsupported) releases, use x.y.z-0.n.<phase>.
 # For official (i.e. supported) releases, use x.y.z-r where r >=1.
-Version:        4.9.3
+Version:        %{major_version}.%{minor_version}.%{update_version}
 Release:        1%{?_timestamp}%{?_commit_id}%{?dist}
 #global         _phase -alpha1
 
@@ -80,6 +84,8 @@ Requires:       glassfish-jaxb-api
 Requires:       slf4j-jdk14
 Requires:       apache-commons-lang3
 
+Provides:       jss = %{major_version}.%{minor_version}
+
 Conflicts:      ldapjdk < 4.20
 Conflicts:      idm-console-framework < 1.2
 Conflicts:      tomcatjss < 7.6.0
@@ -95,7 +101,8 @@ This only works with gcj. Other JREs require that JCE providers be signed.
 ################################################################################
 
 Summary:        Java Security Services (JSS) Javadocs
-Requires:       jss = %{version}-%{release}
+
+Provides:       javadoc = %{major_version}.%{minor_version}
 
 %description javadoc
 This package contains the API documentation for JSS.
@@ -176,6 +183,10 @@ cd %{_vpath_builddir}
 
 ################################################################################
 %changelog
+* Wed Jun 01 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 4.9.4-1
+- Rebase to JSS 4.9.4
+- Bug 2013674 - JSS cannot be properly initialized after using another NSS-backed security provider
+
 * Tue Feb 15 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 4.9.3-1
 - Rebase to JSS 4.9.3
 - Bug 2046022 - CVE-2021-4213 pki-core:10.6/jss: memory leak in TLS connection leads to OOM [rhel-8]