- add patches from fedora to fix CVE-2012-6093 and CVE-2013-0254 - add patches from opensuse to blacklist certs (related to CVE-2013-0743)