diff -u lcms-1.18.dfsg/debian/control lcms-1.18.dfsg/debian/control
--- lcms-1.18.dfsg/debian/control
+++ lcms-1.18.dfsg/debian/control
@@ -1,7 +1,7 @@
 Source: lcms
 Section: libs
 Priority: optional
-Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss@lists.ubuntu.com>
+Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
 XSBC-Original-Maintainer: Oleksandr Moskalenko <malex@debian.org>
 Build-Depends: debhelper (>> 5.0.38), libtiff4-dev, libjpeg62-dev, zlib1g-dev, python-all-dev (>= 2.3.5-11), python-support (>= 0.6.3), dpatch, swig
 Standards-Version: 3.8.0
diff -u lcms-1.18.dfsg/debian/changelog lcms-1.18.dfsg/debian/changelog
--- lcms-1.18.dfsg/debian/changelog
+++ lcms-1.18.dfsg/debian/changelog
@@ -1,3 +1,12 @@
+lcms (1.18.dfsg-1ubuntu2.10.10.1) maverick-security; urgency=low
+
+  * debian/patches/CVE-2009-0793.dpatch: SECURITY UPDATE: (LP: #700198)
+    - Fix DoS via a crafted image that triggers execution of incorrect
+      code for "transformations of monochrome profiles."
+    - CVE-2009-0073
+
+ -- Artur Rona <ari-tczew@ubuntu.com>  Sat, 08 Jan 2011 04:23:13 +0100
+
 lcms (1.18.dfsg-1ubuntu2) lucid; urgency=low
 
   * rebuild rest of main for armel armv7/thumb2 optimization;
only in patch2:
unchanged:
--- lcms-1.18.dfsg.orig/debian/patches/CVE-2009-0793.dpatch
+++ lcms-1.18.dfsg/debian/patches/CVE-2009-0793.dpatch
@@ -0,0 +1,34 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## From: Artur Rona <ari-tczew@ubuntu.com>
+## Description: cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles." Fixes CVE-2009-0793.
+## Bug-Ubuntu: https://launchpad.net/bugs/700198
+## Bug-Debian: http://bugs.debian.org/530785
+## Bug-Redhat: https://bugzilla.redhat.com/492353
+## Origin: https://bugzilla.redhat.com/attachment.cgi?id=337279
+## Forwarded: not-needed
+## Author: Jan Lieskovsky
+
+@DPATCH@
+
+--- lcms-1.18.dfsg.orig/src/cmsxform.c
++++ lcms-1.18.dfsg/src/cmsxform.c
+@@ -660,6 +660,9 @@
+                 GrayTRC = cmsReadICCGamma(hProfile, icSigGrayTRCTag);
+                 FromLstarToXYZ(GrayTRC, Shapes1);
+ 
++		if (GrayTRC == NULL)
++			return NULL;
++
+                 // Reversing must be done after curve translation
+ 
+                 Shapes[0] = cmsReverseGamma(Shapes1[0]->nEntries, Shapes1[0]);
+@@ -675,6 +678,9 @@
+ 
+                 GrayTRC = cmsReadICCGammaReversed(hProfile, icSigGrayTRCTag);   // Y
+ 
++		if (GrayTRC == NULL)
++			return NULL;
++
+                 Shapes[0] = cmsDupGamma(GrayTRC);
+                 Shapes[1] = cmsDupGamma(GrayTRC);
+                 Shapes[2] = cmsDupGamma(GrayTRC); 
only in patch2:
unchanged:
--- lcms-1.18.dfsg.orig/debian/patches/00list
+++ lcms-1.18.dfsg/debian/patches/00list
@@ -0,0 +1 @@
+CVE-2009-0793.dpatch