diff -Nru rsyslog-7.4.4/debian/changelog rsyslog-7.4.4/debian/changelog
--- rsyslog-7.4.4/debian/changelog	2014-10-01 12:44:25.000000000 +0000
+++ rsyslog-7.4.4/debian/changelog	2014-10-02 15:34:04.000000000 +0000
@@ -1,4 +1,4 @@
-rsyslog (7.4.4-1ubuntu2.2) trusty-security; urgency=medium
+rsyslog (7.4.4-1ubuntu2.3) trusty-security; urgency=medium
 
   * SECURITY UPDATE: denial of service and possible code execution via
     invalid PRI value
@@ -10,8 +10,9 @@
       runtime/srutils.c, runtime/syslogd-types.h, runtime/typedefs.h,
       tools/syslogd.c.
     - CVE-2014-3634
+    - CVE-2014-3683
 
- -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Wed, 01 Oct 2014 08:37:29 -0400
+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 02 Oct 2014 11:32:50 -0400
 
 rsyslog (7.4.4-1ubuntu2.1) trusty; urgency=medium
 
diff -Nru rsyslog-7.4.4/debian/patches/CVE-2014-3634.patch rsyslog-7.4.4/debian/patches/CVE-2014-3634.patch
--- rsyslog-7.4.4/debian/patches/CVE-2014-3634.patch	2014-10-01 12:45:39.000000000 +0000
+++ rsyslog-7.4.4/debian/patches/CVE-2014-3634.patch	2014-10-02 15:33:57.000000000 +0000
@@ -1,6 +1,7 @@
 Description: fix denial of service and possible code execution via
  invalid PRI value
-Origin: backported from prifix.v7-stable patch by Rainer Gerhards
+Origin: backported from prifix.v7-stable patch by Rainer Gerhards, and
+ updated for the CVE-2014-3683 fix
 
 Index: rsyslog-7.4.4/grammar/rainerscript.h
 ===================================================================
@@ -294,7 +295,7 @@
 + */
 +static inline int pri2fac(const int pri)
 +{
-+	int fac = pri >> 3;
++	unsigned fac = pri >> 3;
 +	return (fac > 23) ? LOG_FAC_INVLD : fac;
 +}
 +static inline int pri2sev(const int pri)