diff --git a/dbus-0.22-fix-match-rule-equal.patch b/dbus-0.22-fix-match-rule-equal.patch
new file mode 100644
index 0000000..125daab
--- /dev/null
+++ b/dbus-0.22-fix-match-rule-equal.patch
@@ -0,0 +1,13 @@
+diff -pur 0.61-osso23/bus/signals.c 0.61-osso23.new/bus/signals.c
+--- 0.61-osso23/bus/signals.c	2006-11-23 16:46:52.589602192 +0200
++++ 0.61-osso23.new/bus/signals.c	2006-11-23 16:49:28.873843376 +0200
+@@ -1067,6 +1067,9 @@ match_rule_equal (BusMatchRule *a,
+   if (a->flags != b->flags)
+     return FALSE;
+ 
++  if (a->matches_go_to != b->matches_go_to)
++    return FALSE;
++
+   if ((a->flags & BUS_MATCH_MESSAGE_TYPE) &&
+       a->message_type != b->message_type)
+     return FALSE;
diff --git a/dbus.spec b/dbus.spec
index beb40ac..2d4230d 100644
--- a/dbus.spec
+++ b/dbus.spec
@@ -8,7 +8,7 @@
 Summary: D-BUS message bus
 Name: dbus
 Version: 1.0.1 
-Release: 2%{?dist}
+Release: 3%{?dist}
 URL: http://www.freedesktop.org/software/dbus/
 Source0: http://dbus.freedesktop.org/releases/dbus/%{name}-%{version}.tar.gz
 Source1: doxygen_to_devhelp.xsl
@@ -38,6 +38,7 @@ Patch1: dbus-0.60-start-early.patch
 Patch2: dbus-0.92-audit-system.patch
 Patch3: dbus-1.0.1-pthread-holder-fix.patch
 Patch4: dbus-1.0.1-generate-xml-docs.patch
+Patch5: dbus-0.22-fix-match-rule-equal.patch
 
 %description
 
@@ -73,6 +74,8 @@ in this separate package so server systems need not install X.
 %patch2 -p1 -b .audit_system
 %patch3 -p1 -b .pthread-holder-fix
 %patch4 -p1 -b .generate-xml-docs
+%patch5 -p1 -b .dbus-0.22-fix-match-rule-equal.patch
+
 autoreconf -f -i
 
 %build
@@ -181,6 +184,9 @@ fi
 %{_datadir}/devhelp/books/dbus
 
 %changelog
+* Fri Dec 15 2006 David Zeuthen <davidz@redhat.com> - 1.0.1-3%{?dist}
+- CVE-2006-6107: D-Bus denial of service
+
 * Sun Nov 26 2006 Matthias Clasen <mclasen@redhat.com> - 1.0.1-2
 - Include docs, and make them show up in devhelp