Thanks for the report. I'm going to apply the two patches which Petr Písař has recently posted in Savannah.
After that: Should I prepare packages for security (stable and oldstable) for you to review (I assume this helps a little bit), or should I just take the proposed-updates route? Thanks.