- rediff upstream patches to fix CVE-2013-4159 - build with optimization so that FORTIFY_SOURCE works