diff --git a/fix-buffer-overflow.patch b/fix-buffer-overflow.patch
new file mode 100644
index 0000000..d010775
--- /dev/null
+++ b/fix-buffer-overflow.patch
@@ -0,0 +1,44 @@
+	
+Index: soundtouch/source/SoundStretch/WavFile.cpp
+===================================================================
+--- soundtouch.orig/source/SoundStretch/WavFile.cpp
++++ soundtouch/source/SoundStretch/WavFile.cpp
+@@ -528,12 +528,16 @@ int WavInFile::readHeaderBlock()
+         // read length of the format field
+         if (fread(&nLen, sizeof(int), 1, fptr) != 1) return -1;
+         // swap byte order if necessary
+-        _swap32(nLen); // int format_len;
+-        header.format.format_len = nLen;
++        _swap32(nLen);
+ 
+-        // calculate how much length differs from expected
++        // calculate how much length differs from expected 
+         nDump = nLen - ((int)sizeof(header.format) - 8);
+ 
++        // verify that header length isn't smaller than expected structure
++        if ((nLen < 0) || (nDump < 0)) return -1;
++
++        header.format.format_len = nLen;
++
+         // if format_len is larger than expected, read only as much data as we've space for
+         if (nDump > 0)
+         {
+@@ -569,12 +573,16 @@ int WavInFile::readHeaderBlock()
+         // read length of the fact field
+         if (fread(&nLen, sizeof(int), 1, fptr) != 1) return -1;
+         // swap byte order if necessary
+-        _swap32(nLen); // int fact_len;
+-        header.fact.fact_len = nLen;
++        _swap32(nLen);
+ 
+         // calculate how much length differs from expected
+         nDump = nLen - ((int)sizeof(header.fact) - 8);
+ 
++        // verify that fact length isn't smaller than expected structure
++        if ((nLen < 0) || (nDump < 0)) return -1;
++
++        header.fact.fact_len = nLen;
++
+         // if format_len is larger than expected, read only as much data as we've space for
+         if (nDump > 0)
+         {
diff --git a/soundtouch.changes b/soundtouch.changes
index 70c4af4..e495bd2 100644
--- a/soundtouch.changes
+++ b/soundtouch.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Thu Sep  6 12:29:20 UTC 2018 - Marketa Calabkova <mcalabkova@suse.com>
+
+- bsc #1103676: CVE-2018-1000223: soundtouch: Heap-based buffer overflow 
+  added patch fix-buffer-overflow.patch
+
 -------------------------------------------------------------------
 Tue Mar 13 08:44:37 UTC 2018 - jengelh@inai.de
 
diff --git a/soundtouch.spec b/soundtouch.spec
index f17c6df..330154a 100644
--- a/soundtouch.spec
+++ b/soundtouch.spec
@@ -32,6 +32,7 @@ BuildRequires:  automake
 BuildRequires:  gcc-c++
 BuildRequires:  libtool
 BuildRequires:  pkgconfig
+Patch0:         fix-buffer-overflow.patch	
 
 %description
 SoundTouch is a C++ audio processing library that allows
@@ -73,6 +74,7 @@ SoundTouch.
 tr -d '\r' <README.html >README.html~
 touch -r README.html README.html~
 mv README.html~ README.html
+%patch0 -p1
 
 %build
 ./bootstrap