diff -u libphp-snoopy-1.2.3/debian/control libphp-snoopy-1.2.3/debian/control
--- libphp-snoopy-1.2.3/debian/control
+++ libphp-snoopy-1.2.3/debian/control
@@ -1,7 +1,8 @@
 Source: libphp-snoopy
 Section: web
 Priority: optional
-Maintainer: Marcelo Jorge Vieira (metal) <metal@alucinados.com>
+Maintainer: Ubuntu MOTU Developers <ubuntu-motu@lists.ubuntu.com>
+XSBC-Original-Maintainer: Marcelo Jorge Vieira (metal) <metal@alucinados.com>
 Build-Depends: cdbs, debhelper (>= 5)
 Standards-Version: 3.7.3
 Homepage: http://snoopy.sourceforge.net/
diff -u libphp-snoopy-1.2.3/debian/changelog libphp-snoopy-1.2.3/debian/changelog
--- libphp-snoopy-1.2.3/debian/changelog
+++ libphp-snoopy-1.2.3/debian/changelog
@@ -1,3 +1,11 @@
+libphp-snoopy (1.2.3-2ubuntu0.1) intrepid-security; urgency=low
+
+  * SECURITY UPDATE: execute arbitrary commands via shell metacharacters in https URLs (LP: #292923)
+    - changed Snoopy.class.php with patch from version 1.2.4 in ubuntu jaunty
+    - CVE-2008-4796
+
+ -- Vincenzo Ampolo <vincenzo.ampolo@gmail.com>  Sat, 28 Feb 2009 16:48:59 +0100
+
 libphp-snoopy (1.2.3-2) unstable; urgency=low
 
   * Added watch file
only in patch2:
unchanged:
--- libphp-snoopy-1.2.3.orig/debian/patches/CVE-2008-4796.patch
+++ libphp-snoopy-1.2.3/debian/patches/CVE-2008-4796.patch
@@ -0,0 +1,13 @@
+diff -Nur -x '*.orig' -x '*~' libphp-snoopy-1.2.3/Snoopy.class.php libphp-snoopy-1.2.3.new/Snoopy.class.php
+--- libphp-snoopy-1.2.3/Snoopy.class.php	2005-11-08 07:55:33.000000000 +0100
++++ libphp-snoopy-1.2.3.new/Snoopy.class.php	2009-02-28 16:38:31.000000000 +0100
+@@ -1012,8 +1012,7 @@
+ 		
+ 		$headerfile = tempnam($temp_dir, "sno");
+ 
+-		$safer_URI = strtr( $URI, "\"", " " ); // strip quotes from the URI to avoid shell access
+-		exec($this->curl_path." -D \"$headerfile\"".$cmdline_params." \"".$safer_URI."\"",$results,$return);
++		exec($this->curl_path." -k -D \"$headerfile\"".$cmdline_params." \"".escapeshellcmd($URI)."\"",$results,$return);
+ 		
+ 		if($return)
+ 		{