diff --git a/.gitignore b/.gitignore
index 6b7da1b..8f81b61 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,3 @@
 SOURCES/container-selinux.tgz
-SOURCES/selinux-policy-8e93320.tar.gz
-SOURCES/selinux-policy-contrib-1ef4c53.tar.gz
+SOURCES/selinux-policy-37ca182.tar.gz
+SOURCES/selinux-policy-contrib-edff20c.tar.gz
diff --git a/.selinux-policy.metadata b/.selinux-policy.metadata
index 1ccd00c..c08f943 100644
--- a/.selinux-policy.metadata
+++ b/.selinux-policy.metadata
@@ -1,3 +1,3 @@
-bf033b99c53be8019f5a945a1c9cee153b9ef1cc SOURCES/container-selinux.tgz
-d9ea971389217f0f3d9f29aac3034053caec3097 SOURCES/selinux-policy-8e93320.tar.gz
-4edfe8cb63c0c33c8a22d3ecefe2febe221dd170 SOURCES/selinux-policy-contrib-1ef4c53.tar.gz
+bdd824c2ee9aeb8855b4105a0fee20989f77f53a SOURCES/container-selinux.tgz
+a0cdb44884f5744c4da702967912f2132a890085 SOURCES/selinux-policy-37ca182.tar.gz
+b80f75876a9439cf0a65f4a827f937c113d63b12 SOURCES/selinux-policy-contrib-edff20c.tar.gz
diff --git a/SPECS/selinux-policy.spec b/SPECS/selinux-policy.spec
index df6d944..3b5c8d6 100644
--- a/SPECS/selinux-policy.spec
+++ b/SPECS/selinux-policy.spec
@@ -1,11 +1,11 @@
 # github repo with selinux-policy base sources
 %global git0 https://github.com/fedora-selinux/selinux-policy
-%global commit0 8e9332098553984c6c21948019c82aed13bbd572
+%global commit0 37ca182df71de078e091e4bc1bfe11ebaee503f0
 %global shortcommit0 %(c=%{commit0}; echo ${c:0:7})
 
 # github repo with selinux-policy contrib sources
 %global git1 https://github.com/fedora-selinux/selinux-policy-contrib
-%global commit1 1ef4c53e1475b95ddfc146a0d0fd5b096c5a1d7b
+%global commit1 edff20caf7143e846bc2e50266ffd99d4dc859d3
 %global shortcommit1 %(c=%{commit1}; echo ${c:0:7})
 
 %define distro redhat
@@ -29,7 +29,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 3.14.3
-Release: 71%{?dist}
+Release: 72%{?dist}
 License: GPLv2+
 Source: %{git0}/archive/%{commit0}/%{name}-%{shortcommit0}.tar.gz
 Source29: %{git1}/archive/%{commit1}/%{name}-contrib-%{shortcommit1}.tar.gz
@@ -715,6 +715,26 @@ exit 0
 %endif
 
 %changelog
+* Tue Jun 29 2021 Zdenek Pytela <zpytela@redhat.com> - 3.14.3-72
+- Allow systemd-sleep get attributes of fixed disk device nodes
+Resolves: rhbz#1931460
+- Allow systemd-sleep create hardware state information files
+Resolves: rhbz#1968610
+- virtiofs supports Xattrs and SELinux
+Resolves: rhbz#1899703
+- Label 4460/tcp port as ntske_port_t
+Resolves: rhbz#1961207
+- Add the miscfiles_map_generic_certs macro to the sysnet_dns_name_resolve macro.
+Resolves: rhbz#1961207
+- Allow chronyd_t to accept and make NTS-KE connections
+Resolves: rhbz#1961207
+- Dontaudit NetworkManager write to initrc_tmp_t pipes
+Resolves: rhbz#1963162
+- Allow logrotate rotate container log files
+Resolves: rhbz#1892170
+- Allow rhsmd read process state of all domains and kernel threads
+Resolves: rhbz#1878020
+
 * Tue Jun 15 2021 Zdenek Pytela <zpytela@redhat.com> - 3.14.3-71
 - Allow nmap create and use rdma socket
 Resolves: rhbz#1844530