- add upstream patches to fix: - CVE-2012-2733 - CVE-2012-588[5-7] (was CVE-2012-3439) - CVE-2012-3546 - CVE-2012-4431 - CVE-2012-4534