diff -Nru bash-5.1/debian/changelog bash-5.1/debian/changelog
--- bash-5.1/debian/changelog	2022-02-08 22:28:02.000000000 +0000
+++ bash-5.1/debian/changelog	2024-03-26 15:32:19.000000000 +0000
@@ -1,9 +1,17 @@
-bash (5.1-6ubuntu1~20.04.sav0) focal; urgency=medium
+bash (5.1-6ubuntu1.1~20.04.sav0) focal; urgency=medium
 
   * Backport to Focal
   * Revert "Remove preinst since "dash-as-sh"-transition is done"
 
- -- Rob Savoury <savoury@savos.tech>  Tue, 08 Feb 2022 14:28:02 -0800
+ -- Rob Savoury <savoury@savos.tech>  Tue, 26 Mar 2024 08:31:02 -0800
+
+bash (5.1-6ubuntu1.1) jammy-security; urgency=medium
+
+  * SECURITY UPDATE: heap-buffer overflow in valid parameter_transform
+    - debian/patches/CVE-2022-3715.patch: add extra check to subst.c.
+    - CVE-2022-3715
+
+ -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Thu, 14 Mar 2024 07:31:47 -0400
 
 bash (5.1-6ubuntu1) jammy; urgency=medium
 
diff -Nru bash-5.1/debian/patches/CVE-2022-3715.patch bash-5.1/debian/patches/CVE-2022-3715.patch
--- bash-5.1/debian/patches/CVE-2022-3715.patch	1970-01-01 00:00:00.000000000 +0000
+++ bash-5.1/debian/patches/CVE-2022-3715.patch	2024-03-14 11:31:47.000000000 +0000
@@ -0,0 +1,14 @@
+Description: fix heap-buffer overflow in valid parameter_transform
+Origin: backport, http://git.savannah.gnu.org/cgit/bash.git/commit/subst.c?id=74091dd4e8086db518b30df7f222691524469998
+
+--- a/subst.c
++++ b/subst.c
+@@ -7962,7 +7962,7 @@ parameter_brace_transform (varname, valu
+       return ((char *)NULL);
+     }
+ 
+-  if (valid_parameter_transform (xform) == 0)
++  if (xform[0] == 0 || valid_parameter_transform (xform) == 0)
+     {
+       this_command_name = oname;
+ #if 0 /* TAG: bash-5.2 Martin Schulte <gnu@schrader-schulte.de> 10/2020 */
diff -Nru bash-5.1/debian/patches/series bash-5.1/debian/patches/series
--- bash-5.1/debian/patches/series	2022-01-06 16:23:33.000000000 +0000
+++ bash-5.1/debian/patches/series	2024-03-14 11:31:30.000000000 +0000
@@ -34,3 +34,4 @@
 bzero.diff
 man-macro-warnings.diff
 man-vx-opts.diff
+CVE-2022-3715.patch