diff -Nru ruby-websocket-extensions-0.1.2/debian/changelog ruby-websocket-extensions-0.1.2/debian/changelog
--- ruby-websocket-extensions-0.1.2/debian/changelog	2016-03-07 01:15:36.000000000 +0000
+++ ruby-websocket-extensions-0.1.2/debian/changelog	2020-09-14 19:03:48.000000000 +0000
@@ -1,3 +1,17 @@
+ruby-websocket-extensions (0.1.2-1+deb9u1build0.20.04.1) focal-security; urgency=medium
+
+  * fake sync from Debian
+
+ -- Eduardo Barretto <eduardo.barretto@canonical.com>  Mon, 14 Sep 2020 16:03:48 -0300
+
+ruby-websocket-extensions (0.1.2-1+deb9u1) stretch-security; urgency=high
+
+  * CVE-2020-7663: Prevent a denial of service attack that is exploitable by an
+    exponential-time regular expression backtracking vulnerability.
+    (Closes: #964274)
+
+ -- Chris Lamb <lamby@debian.org>  Wed, 19 Aug 2020 12:50:29 +0100
+
 ruby-websocket-extensions (0.1.2-1) unstable; urgency=medium
 
   * Initial release (Closes: #816883)
diff -Nru ruby-websocket-extensions-0.1.2/debian/patches/CVE-2020-7663.patch ruby-websocket-extensions-0.1.2/debian/patches/CVE-2020-7663.patch
--- ruby-websocket-extensions-0.1.2/debian/patches/CVE-2020-7663.patch	1970-01-01 00:00:00.000000000 +0000
+++ ruby-websocket-extensions-0.1.2/debian/patches/CVE-2020-7663.patch	2020-08-19 11:50:29.000000000 +0000
@@ -0,0 +1,11 @@
+--- ruby-websocket-extensions-0.1.2.orig/lib/websocket/extensions/parser.rb
++++ ruby-websocket-extensions-0.1.2/lib/websocket/extensions/parser.rb
+@@ -6,7 +6,7 @@ module WebSocket
+     class Parser
+       TOKEN    = /([!#\$%&'\*\+\-\.\^_`\|~0-9a-z]+)/
+       NOTOKEN  = /([^!#\$%&'\*\+\-\.\^_`\|~0-9a-z])/
+-      QUOTED   = /"((?:\\[\x00-\x7f]|[^\x00-\x08\x0a-\x1f\x7f"])*)"/
++      QUOTED   = /"((?:\\[\x00-\x7f]|[^\x00-\x08\x0a-\x1f\x7f"\\])*)"/
+       PARAM    = %r{#{TOKEN.source}(?:=(?:#{TOKEN.source}|#{QUOTED.source}))?}
+       EXT      = %r{#{TOKEN.source}(?: *; *#{PARAM.source})*}
+       EXT_LIST = %r{^#{EXT.source}(?: *, *#{EXT.source})*$}
diff -Nru ruby-websocket-extensions-0.1.2/debian/patches/series ruby-websocket-extensions-0.1.2/debian/patches/series
--- ruby-websocket-extensions-0.1.2/debian/patches/series	1970-01-01 00:00:00.000000000 +0000
+++ ruby-websocket-extensions-0.1.2/debian/patches/series	2020-08-19 11:50:29.000000000 +0000
@@ -0,0 +1 @@
+CVE-2020-7663.patch