diff -u newsbeuter-0.7/debian/changelog newsbeuter-0.7/debian/changelog
--- newsbeuter-0.7/debian/changelog
+++ newsbeuter-0.7/debian/changelog
@@ -1,3 +1,13 @@
+newsbeuter (0.7-1ubuntu0.1) hardy-security; urgency=low
+
+  * SECURITY UPDATE: arbitrary code execution via crafted item URLS.
+    - src/view.cpp: Escape single quotes in item URLs. Fixes arbitrary
+      code execution. Patch from Debian.
+    - References:
+      + CVE-2008-3907
+
+ -- William Grant <wgrant@ubuntu.com>  Sat, 27 Sep 2008 11:01:24 +1000
+
 newsbeuter (0.7-1) unstable; urgency=low
 
   * New upstream release.
diff -u newsbeuter-0.7/debian/control newsbeuter-0.7/debian/control
--- newsbeuter-0.7/debian/control
+++ newsbeuter-0.7/debian/control
@@ -1,7 +1,8 @@
 Source: newsbeuter
 Section: net
 Priority: optional
-Maintainer: Nico Golde <nion@debian.org>
+Maintainer: Ubuntu MOTU Developers <ubuntu-motu@lists.ubuntu.com>
+XSBC-Original-Maintainer: Nico Golde <nion@debian.org>
 Build-Depends: libncursesw5-dev, debhelper (>= 5), libnxml0-dev(>= 0.18), libmrss0-dev (>= 0.18), libstfl-dev (>= 0.14), libsqlite3-dev, perl
 Standards-Version: 3.7.2
 
only in patch2:
unchanged:
--- newsbeuter-0.7.orig/src/view.cpp
+++ newsbeuter-0.7/src/view.cpp
@@ -19,6 +19,7 @@
 #include <exception.h>
 #include <exceptions.h>
 #include <keymap.h>
+#include <utils.h>
 
 #include <iostream>
 #include <iomanip>
@@ -277,7 +278,7 @@
 	else
 		cmdline.append("lynx");
 	cmdline.append(" '");
-	cmdline.append(url);
+	cmdline.append(utils::replace_all(url,"'", "%27"));
 	cmdline.append("'");
 	stfl::reset();
 	GetLogger().log(LOG_DEBUG, "view::open_in_browser: running `%s'", cmdline.c_str());