Debian Security Advisory 1585-1 - It was discovered that speex, The Speex codec command line tools, did not correctly did not correctly deal with negative offsets in a particular header field. This could allow a malicious file to execute arbitrary code.
58ba5f6f2087b0475b32666839ed85079aae9b23d864adaa42fe7bc7447bf0e4