diff -Nru libvpx-1.4.0/debian/changelog libvpx-1.4.0/debian/changelog
--- libvpx-1.4.0/debian/changelog	2015-05-15 14:40:38.000000000 +0000
+++ libvpx-1.4.0/debian/changelog	2015-07-28 20:34:14.000000000 +0000
@@ -1,8 +1,21 @@
-libvpx (1.4.0-3~ppa1) vivid; urgency=low
+libvpx (1.4.0-4~ppa1) vivid; urgency=low
 
   * Backported from Debian unstable.
 
- -- Nate Muench <NowIWillDestroyAbydos@gmail.com>  Fri, 15 May 2015 09:40:13 -0500
+ -- Nate Muench <NowIWillDestroyAbydos@gmail.com>  Tue, 28 Jul 2015 15:33:58 -0500
+
+libvpx (1.4.0-4) unstable; urgency=medium
+
+  * debian/rules:
+    + Configure with --size-limit=16384x16384 to work around
+      CVE-2015-1258 like Chrome does. Streams with a higher
+      resolution than that will fail to decode now.
+    + Configure with --enable-postproc --enable-multi-res-encoding
+      --enable-temporal-denoising --enable-vp9-temporal-denoising
+      --enable-vp9-postproc to mirror the configuration that Chrome
+      is using.
+
+ -- Sebastian Dröge <slomo@debian.org>  Tue, 23 Jun 2015 10:09:08 +0200
 
 libvpx (1.4.0-3) unstable; urgency=medium
 
diff -Nru libvpx-1.4.0/debian/rules libvpx-1.4.0/debian/rules
--- libvpx-1.4.0/debian/rules	2015-05-14 11:19:09.000000000 +0000
+++ libvpx-1.4.0/debian/rules	2015-06-23 08:08:53.000000000 +0000
@@ -11,7 +11,13 @@
   --enable-pic \
   --enable-shared \
   --disable-install-bins \
-  --disable-install-srcs
+  --disable-install-srcs \
+  --size-limit=16384x16384 \
+  --enable-postproc \
+  --enable-multi-res-encoding \
+  --enable-temporal-denoising \
+  --enable-vp9-temporal-denoising \
+  --enable-vp9-postproc
 
 ifeq ($(DEB_HOST_ARCH_CPU),arm)
 configure_flags_neon := $(configure_flags) --target=armv7-linux-gcc