diff -u xpdf-3.02/debian/changelog xpdf-3.02/debian/changelog
--- xpdf-3.02/debian/changelog
+++ xpdf-3.02/debian/changelog
@@ -1,3 +1,9 @@
+xpdf (3.02-1.4+lenny4) oldstable-proposed-updates; urgency=low
+
+  * Fix cve-2011-2902: insecure tempfile usage in zxpdf.
+
+ -- Michael Gilbert <michael.s.gilbert@gmail.com>  Mon, 16 Jan 2012 10:43:16 +0000
+
 xpdf (3.02-1.4+lenny3) stable-security; urgency=high
 
   * Non-maintainer upload by the security team.
diff -u xpdf-3.02/debian/zxpdf xpdf-3.02/debian/zxpdf
--- xpdf-3.02/debian/zxpdf
+++ xpdf-3.02/debian/zxpdf
@@ -40,8 +40,7 @@
 then
     tmp="$file"
 else
-    tmp=$(basename "$file")
-    tmp=$(tempfile -p "${tmp%.pdf*}" -s .pdf)
+    tmp=$(tempfile -s .pdf)
     $cat "$file" >"$tmp"
 fi