Comment 14 for bug 527033

This bug was fixed in the package audiofile - 0.2.6-7ubuntu1.8.04.1

---------------
audiofile (0.2.6-7ubuntu1.8.04.1) hardy-security; urgency=low

  * SECURITY UPDATE: Heap-based buffer overflow in msadpcm.c in libaudiofile
    in audiofile 0.2.6 allows context-dependent attackers to cause a denial
    of service (application crash) or possibly execute arbitrary code via a
    crafted WAV file. (LP: #527033)
    - debian/patches/22_CVE-2008-5824.dpatch: Fix buffer overflow when
      decompressing MS ADPCM .wav files.
    - CVE-2008-5824
 -- Stefan Lesicnik <email address hidden> Tue, 02 Mar 2010 15:59:08 +0200