diff --git a/debian/changelog b/debian/changelog
index 37c649693e..079a9997c4 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,9 +1,15 @@
-gitlab (10.7.6+dfsg-1~bpo9+1) stretch-backports; urgency=medium
+gitlab (10.7.6+dfsg-2~bpo9+1) stretch-backports; urgency=medium
 
   * Rebuild for stretch-backports.
 
  -- Pirate Praveen <praveen@debian.org>  Sun, 03 Jun 2018 21:03:45 +0530
 
+gitlab (10.7.6+dfsg-2) experimental; urgency=medium
+
+  * Support html-sanitizer >= 2.7.1 (see upstream issue 48415)
+
+ -- Pirate Praveen <praveen@debian.org>  Sat, 30 Jun 2018 16:51:41 +0530
+
 gitlab (10.7.6+dfsg-1) experimental; urgency=medium
 
   * New upstream version 10.7.6+dfsg
diff --git a/debian/patches/html-sanitizer-2.8.patch b/debian/patches/html-sanitizer-2.8.patch
new file mode 100644
index 0000000000..d2f999c0d2
--- /dev/null
+++ b/debian/patches/html-sanitizer-2.8.patch
@@ -0,0 +1,13 @@
+Bug: https://gitlab.com/gitlab-org/gitlab-ce/issues/48415
+
+--- a/lib/banzai/filter/sanitization_filter.rb
++++ b/lib/banzai/filter/sanitization_filter.rb
+@@ -8,7 +8,7 @@
+       TABLE_ALIGNMENT_PATTERN = /text-align: (?<alignment>center|left|right)/
+ 
+       def whitelist
+-        whitelist = super
++	whitelist = super.dup
+ 
+         customize_whitelist(whitelist)
+ 
diff --git a/debian/patches/series b/debian/patches/series
index 31d04139a6..4e35a002fd 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,4 +1,5 @@
 895871-markdown.patch
+html-sanitizer-2.8.patch
 0050-relax-stable-libs.patch
 0100-remove-development-test.patch
 0108-make-mysql-optional.patch