diff --git a/community/go/APKBUILD b/community/go/APKBUILD
index 4024ca172c592edbf5f557c015f1fde8b94f86ff..cf56ce3a1c9d49a465440d290b03a55dde33a965 100644
--- a/community/go/APKBUILD
+++ b/community/go/APKBUILD
@@ -4,8 +4,8 @@
 # Maintainer: Sören Tempel <soeren+alpine@soeren-tempel.net>
 pkgname=go
 # go binaries are statically linked, security updates require rebuilds
-pkgver=1.20.2
-pkgrel=1
+pkgver=1.20.3
+pkgrel=0
 pkgdesc="Go programming language compiler"
 url="https://go.dev/"
 arch="all"
@@ -45,6 +45,11 @@ provider_priority=100 # highest
 #     - CVE-2022-41716
 #     - CVE-2022-41720
 #     - CVE-2022-41722
+#   1.20.3-r0:
+#     - CVE-2023-24537
+#     - CVE-2023-24538
+#     - CVE-2023-24534
+#     - CVE-2023-24536
 #   1.20.2-r0:
 #     - CVE-2023-24532
 #   1.20.1-r0:
@@ -259,7 +264,7 @@ package() {
 }
 
 sha512sums="
-ba8f894b1baa6b3c1bdaafa113feff8d16c25d91f8e44bd4e7ffb46d7b329309290f27385804399baa9834691290a209fc7a193b24fd197ea11a16ce4a1b9d39  go1.20.2.src.tar.gz
+47ebb3925956a3facef9e5e6f4efec3058e55632020ea247844c55b160d23e2be3880ea24dec2f73382a7c7858259896cbb7de1bb764c481c176bed479676029  go1.20.3.src.tar.gz
 92a4387378773d990d05fc3ed9a57360bc9eb5ec09c1faabd6c252203873abe18ef1ce4c399e78ec6fd4e911e6cdb2c4b2ebb778aaeeaabe0d55710a0415d445  0001-cmd-link-load-host-archive-libc_nonshared.a-for-fsta.patch
 17ae436672c166d353d653cf012cbb70093ce03c1520af956927b42afe4b9d789923882aa97e7050f4984db8aa039e90cc107a78e0b4d4f1964a2b456d97b50b  0002-cmd-link-check-for-libssp_nonshared.a-instead-of-lib.patch
 d819281963368932d937d2768fb4cbabfec7f5c1d318c73538174875f6510500c0427037c2f4090ff32e4f150ffe362aaef86287ac32b6045468842454628091  0003-cmd-link-always-check-for-__stack_chk_fail_local-ref.patch