diff -u sabre-0.2.4b/RunSabre sabre-0.2.4b/RunSabre
--- sabre-0.2.4b/RunSabre
+++ sabre-0.2.4b/RunSabre
@@ -26,8 +26,9 @@
 # 1999 Miscellanous changes by Milan Zamazal <pdm@debian.org>
 banner="$(/usr/games/sabre --print-banner)"
 DLG=/usr/bin/dialog
-FOO=${TMPDIR:-/tmp}/sabre.$$
-LOG=${TMPDIR:-/tmp}/sabre.log
+FOO=$(mktemp -t sabre.XXXXXX) || exit 1
+LOG=$(mktemp -t sabre.XXXXXX) || exit 1
+LOADLOG=$(mktemp -t sabre.XXXXXX) || exit 1
 MODE="-mode 0"
 RZ_STEPS=
 SABRE="-mode $MODE" #default flight parameters
@@ -474,7 +475,7 @@
   "svgamode")      sabre_vgamodes;;
   "window")        sabre_vgawindow;;
   "documentation") sabre_documentation;;
-  "quit" | "") rm -f $FOO $FOO1 $LOG loadlog; exit;;
+  "quit" | "") rm -f $FOO $LOG $LOADLOG; exit;;
  esac
 done
 # the end
diff -u sabre-0.2.4b/RunSabreSDL sabre-0.2.4b/RunSabreSDL
--- sabre-0.2.4b/RunSabreSDL
+++ sabre-0.2.4b/RunSabreSDL
@@ -26,8 +26,9 @@
 # 1999, 2002 Miscellanous changes by Milan Zamazal <pdm@debian.org>
 banner="$(/usr/games/sabresdl --print-banner)"
 DLG=/usr/bin/dialog
-FOO=${TMPDIR:-/tmp}/sabre.$$
-LOG=${TMPDIR:-/tmp}/sabre.log
+FOO=$(mktemp -t sabre.XXXXXX) || exit 1
+LOG=$(mktemp -t sabre.XXXXXX) || exit 1
+LOADLOG=$(mktemp -t sabre.XXXXXX) || exit 1
 MODE="-mode 0"
 RZ_STEPS=
 SABRE="-mode $MODE" #default flight parameters
@@ -472,7 +473,7 @@
   "controls")      sabre_controls;;
   "window")        sabre_vgawindow;;
   "documentation") sabre_documentation;;
-  "quit" | "") rm -f $FOO $FOO1 $LOG loadlog; exit;;
+  "quit" | "") rm -f $FOO $LOG $LOADLOG; exit;;
  esac
 done
 # the end
diff -u sabre-0.2.4b/debian/control sabre-0.2.4b/debian/control
--- sabre-0.2.4b/debian/control
+++ sabre-0.2.4b/debian/control
@@ -1,7 +1,8 @@
 Source: sabre
 Section: games
 Priority: optional
-Maintainer: Sam Hocevar (Debian packages) <sam+deb@zoy.org>
+Maintainer: Ubuntu MOTU Developers <ubuntu-motu@lists.ubuntu.com>
+XSBC-Original-Maintainer: Sam Hocevar (Debian packages) <sam+deb@zoy.org>
 Build-Depends: debhelper (>= 4.0), libncurses-dev, libsdl1.2-dev (>= 1.2.2-3.1), libsvga1-dev [i386]
 Standards-Version: 3.6.2.1
 
diff -u sabre-0.2.4b/debian/changelog sabre-0.2.4b/debian/changelog
--- sabre-0.2.4b/debian/changelog
+++ sabre-0.2.4b/debian/changelog
@@ -1,3 +1,17 @@
+sabre (0.2.4b-21ubuntu0.1) dapper-security; urgency=low
+
+  * SECURITY UPDATE: XRunSabre in sabre (aka xsabre) 0.2.4b relies
+    on the ability to create /tmp/sabre.log, which allows local
+    users to cause a denial of service (application unavailability)
+    by creating a /tmp/sabre.log file that cannot be overwritten.
+    (LP: #283446)
+    - RunSabre,RunSabreSDL: Inline upstream patch to
+      use mktemp to create temporary files.
+    - CVE-2008-4406
+    - CVE-2008-4407
+
+ -- Stefan Lesicnik <stefan@lsd.co.za>  Wed, 15 Oct 2008 22:04:30 +0200
+
 sabre (0.2.4b-21) unstable; urgency=low
 
   * debian/control: