diff --git a/CMakeLists.txt b/CMakeLists.txt
index 5f097041d3..782cb6c549 100644
--- a/CMakeLists.txt
+++ b/CMakeLists.txt
@@ -2,7 +2,7 @@
 cmake_minimum_required( VERSION 3.11.0 )
 
 project(exiv2
-    VERSION 0.28.0
+    VERSION 0.28.1
     DESCRIPTION    "Exif/IPTC/Xmp C++ metadata library and tools plus ICC Profiles, Previews and more."
     LANGUAGES C CXX
 )
diff --git a/doc/ChangeLog b/doc/ChangeLog
index 83bf49148a..2b14104d16 100644
--- a/doc/ChangeLog
+++ b/doc/ChangeLog
@@ -1,3 +1,11 @@
+Changes from version 0.28.0 to 0.28.1
+-------------------------------------
+
+Release Notes:
+https://github.com/Exiv2/exiv2/issues/2813
+
+This release also fixes [CVE-2023-44398](https://github.com/Exiv2/exiv2/security/advisories/GHSA-hrw9-ggg3-3r4r), an out-of-bounds write in `BmffImage::brotliUncompress`. The vulnerability is in new code that was added in version 0.28.0, so earlier versions of Exiv2 are not affected.
+
 Changes from version 0.27.6 to 0.28.0
 -------------------------------------
 
diff --git a/meson.build b/meson.build
index 4a9417cfbb..707c9622c9 100644
--- a/meson.build
+++ b/meson.build
@@ -1,7 +1,7 @@
 project(
   'exiv2',
   'cpp',
-  version: '0.28.0',
+  version: '0.28.1',
   meson_version: '>=0.54.1',
   default_options: ['warning_level=0', 'cpp_std=c++17'],
 )