diff -u libfishsound-0.7.0/debian/changelog libfishsound-0.7.0/debian/changelog
--- libfishsound-0.7.0/debian/changelog
+++ libfishsound-0.7.0/debian/changelog
@@ -1,3 +1,12 @@
+libfishsound (0.7.0-2.1ubuntu0.1) hardy-security; urgency=low
+
+  * SECURITY UPDATE: uncontrolled array index (LP: #218652)
+  - src/libfishsound/speex.c - Added check for negative offset.
+    Based on Debian patch.
+  - CVE-2008-1686
+
+ -- Brian Thomason <brian.thomason@canonical.com>  Tue, 29 Jun 2010 16:24:03 -0400
+
 libfishsound (0.7.0-2.1) unstable; urgency=low
 
   * Porter NMU.
--- libfishsound-0.7.0.orig/src/libfishsound/speex.c
+++ libfishsound-0.7.0/src/libfishsound/speex.c
@@ -136,7 +136,7 @@
     return NULL;
   }
 
-  if (header->mode >= SPEEX_NB_MODES) {
+  if (header->mode >= SPEEX_NB_MODES || header->mode < 0) {
     /*
     info_dialog_new ("Speex error", NULL,
 		     "Mode number %d does not (any longer) exist in this version\n",