diff -u tomboy-0.8.0/debian/changelog tomboy-0.8.0/debian/changelog
--- tomboy-0.8.0/debian/changelog
+++ tomboy-0.8.0/debian/changelog
@@ -1,3 +1,21 @@
+tomboy (0.8.0-1ubuntu0.1) gutsy-security; urgency=low
+
+  * SECURITY UPDATE: Multiple untrusted search path vulnerabilities in SUSE
+    Linux 9.3 and 10.0, and possibly other distributions, cause the working
+    directory to be added to LD_LIBRARY_PATH, which might allow local users to
+    execute arbitrary code via (1) beagle, (2) tomboy, or (3) blam. NOTE: in
+    August 2007, the tomboy vector was reported for other distributions.
+  * Tomboy/tomboy-panel.in + Tomboy/tomboy.in:
+    Fixed all LD_LIBRARY_PATHS with a fix from Gentoo. Need to change /bin/sh
+    to /bin/bash as well.
+    (See: http://bugs.gentoo.org/attachment.cgi?id=133582)
+  * References:
+    CVE-2005-4790
+    http://bugs.gentoo.org/show_bug.cgi?id=189249
+    https://bugzilla.redhat.com/show_bug.cgi?id=252294
+
+ -- Stephan Hermann <sh@sourcecode.de>  Tue, 13 Nov 2007 23:16:59 +0100
+
 tomboy (0.8.0-1) unstable; urgency=low
 
   * New upstream release (Closes: #436809):
only in patch2:
unchanged:
--- tomboy-0.8.0.orig/Tomboy/tomboy.in
+++ tomboy-0.8.0/Tomboy/tomboy.in
@@ -1,15 +1,15 @@
-#!/bin/sh
+#!/bin/bash
 
 if [ "x$PWD" = "x@srcdir@" ] ; then
     echo "*** Running uninstalled @target@ ***"
 
-    export LD_LIBRARY_PATH="../libtomboy/.libs:$LD_LIBRARY_PATH:./Addins/PrintNotes/.libs"
+    export LD_LIBRARY_PATH="../libtomboy/.libs${LD_LIBRARY_PATH+:$LD_LIBRARY_PATH}:./Addins/PrintNotes/.libs"
     export TOMBOY_WRAPPER_PATH="$PWD/@wrapper@"
     export MONO_PATH=$MONO_PATH:./Addins:../Mono.Addins/Mono.Addins:../Mono.Addins/Mono.Addins.Setup:../Mono.Addins/Mono.Addins.Gui
 
     THIS_EXE="--debug ./@target@"
 else
-    export LD_LIBRARY_PATH="@pkglibdir@:$LD_LIBRARY_PATH"
+    export LD_LIBRARY_PATH="@pkglibdir@${LD_LIBRARY_PATH+:$LD_LIBRARY_PATH}"
     export MONO_PATH=$MONO_PATH:@pkglibdir@:@pkglibdir@/addins
     export TOMBOY_WRAPPER_PATH="@bindir@/@wrapper@"
 
only in patch2:
unchanged:
--- tomboy-0.8.0.orig/Tomboy/tomboy-panel.in
+++ tomboy-0.8.0/Tomboy/tomboy-panel.in
@@ -1,6 +1,6 @@
-#!/bin/sh
+#!/bin/bash
 
-export LD_LIBRARY_PATH="@pkglibdir@:$LD_LIBRARY_PATH"
+export LD_LIBRARY_PATH="@pkglibdir@${LD_LIBRARY_PATH+:$LD_LIBRARY_PATH}"
 export MONO_PATH=$MONO_PATH:@pkglibdir@:@pkglibdir@/addins
 export TOMBOY_WRAPPER_PATH="@bindir@/@wrapper@"