diff -Nru dpkg-1.15.5.6ubuntu4.2/debian/changelog dpkg-1.15.5.6ubuntu4.4/debian/changelog
--- dpkg-1.15.5.6ubuntu4.2/debian/changelog	2010-09-07 11:18:04.000000000 +0000
+++ dpkg-1.15.5.6ubuntu4.4/debian/changelog	2010-10-02 20:27:55.000000000 +0000
@@ -1,10 +1,18 @@
-dpkg (1.15.5.6ubuntu4.2) lucid-proposed; urgency=low
+dpkg (1.15.5.6ubuntu4.4) lucid-proposed; urgency=low
 
-  * Backport my patch from dpkg 1.15.6.1:
-    - Accept source packages without "Format" field for compatibility with
-      very old source packages (LP: #632280).
+  * scripts/Dpkg/Source/Archive.pm: Drop -k parameter from the tar call used 
+    by dpkg-source to extract tarballs. Upstream binary files modified by the 
+    packager were not properly installed due to this.  Patch based on that of 
+    Raphaël Hertzog (upstream, debian git). (LP: #633015)
 
- -- Colin Watson <cjwatson@ubuntu.com>  Tue, 07 Sep 2010 12:05:25 +0100
+ -- Dave Walker (Daviey) <DaveWalker@ubuntu.com>  Sat, 02 Oct 2010 00:30:53 +0100
+
+dpkg (1.15.5.6ubuntu4.3) lucid-security; urgency=low
+
+  * SECURITY UPDATE: no change rebuild to use the new statically linked libbz2
+    which fixed CVE-2010-0405
+
+ -- Jamie Strandboge <jamie@ubuntu.com>  Mon, 20 Sep 2010 07:56:11 -0500
 
 dpkg (1.15.5.6ubuntu4.1) lucid-proposed; urgency=low
 
diff -Nru dpkg-1.15.5.6ubuntu4.2/scripts/Dpkg/Source/Archive.pm dpkg-1.15.5.6ubuntu4.4/scripts/Dpkg/Source/Archive.pm
--- dpkg-1.15.5.6ubuntu4.2/scripts/Dpkg/Source/Archive.pm	2010-09-07 11:18:05.000000000 +0000
+++ dpkg-1.15.5.6ubuntu4.4/scripts/Dpkg/Source/Archive.pm	2010-10-02 20:27:55.000000000 +0000
@@ -119,7 +119,7 @@
     # Call tar extraction process
     $fork_opts{"delete_env"} = [ "TAR_OPTIONS" ];
     $fork_opts{'exec'} = [ 'tar', '--no-same-owner', '--no-same-permissions',
-                           @{$opts{"options"}}, '-xkf', '-' ];
+                           @{$opts{"options"}}, '-xf', '-' ];
     fork_and_exec(%fork_opts);
     $self->cleanup_after_open();
 
diff -Nru dpkg-1.15.5.6ubuntu4.2/scripts/Dpkg/Source/Package.pm dpkg-1.15.5.6ubuntu4.4/scripts/Dpkg/Source/Package.pm
--- dpkg-1.15.5.6ubuntu4.2/scripts/Dpkg/Source/Package.pm	2010-09-07 11:18:05.000000000 +0000
+++ dpkg-1.15.5.6ubuntu4.4/scripts/Dpkg/Source/Package.pm	2010-06-28 14:04:09.000000000 +0000
@@ -143,7 +143,7 @@
     close(CDATA);
     $self->{'fields'} = $fields;
 
-    foreach my $f (qw(Source Version Files)) {
+    foreach my $f (qw(Source Format Version Files)) {
         unless (defined($fields->{$f})) {
             error(_g("missing critical source control field %s"), $f);
         }
@@ -157,8 +157,6 @@
 sub upgrade_object_type {
     my ($self, $update_format) = @_;
     $update_format = 1 unless defined $update_format;
-    $self->{'fields'}{'Format'} = '1.0'
-        unless exists $self->{'fields'}{'Format'};
     my $format = $self->{'fields'}{'Format'};
 
     if ($format =~ /^([\d\.]+)(?:\s+\((.*)\))?$/) {