[1.0.28-10.1] - a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution