diff -Nru sox-14.4.2+git20190427/debian/changelog sox-14.4.2+git20190427/debian/changelog
--- sox-14.4.2+git20190427/debian/changelog	2023-02-28 10:29:06.000000000 +0000
+++ sox-14.4.2+git20190427/debian/changelog	2023-03-17 15:11:11.000000000 +0000
@@ -1,8 +1,18 @@
-sox (14.4.2+git20190427-2+deb11u1build0.22.04.1) jammy-security; urgency=medium
+sox (14.4.2+git20190427-2+deb11u2build0.22.04.1) jammy-security; urgency=medium
 
   * fake sync from Debian
 
- -- Amir Naseredini <amir.naseredini@canonical.com>  Tue, 28 Feb 2023 10:29:06 +0000
+ -- Amir Naseredini <amir.naseredini@canonical.com>  Fri, 17 Mar 2023 15:11:11 +0000
+
+sox (14.4.2+git20190427-2+deb11u2) bullseye-security; urgency=high
+
+  * Non-maintainer upload by the Security Team.
+
+  [ Helmut Grohne ]
+  * Fix regression in wav-gsm decodeing introduced via fixing CVE-2021-33844
+    (Closes: #1032082)
+
+ -- Salvatore Bonaccorso <carnil@debian.org>  Thu, 16 Mar 2023 21:30:12 +0100
 
 sox (14.4.2+git20190427-2+deb11u1) bullseye-security; urgency=medium
 
diff -Nru sox-14.4.2+git20190427/debian/patches/CVE-2021-33844.patch sox-14.4.2+git20190427/debian/patches/CVE-2021-33844.patch
--- sox-14.4.2+git20190427/debian/patches/CVE-2021-33844.patch	2023-02-17 16:13:54.000000000 +0000
+++ sox-14.4.2+git20190427/debian/patches/CVE-2021-33844.patch	2023-03-16 20:30:12.000000000 +0000
@@ -14,15 +14,22 @@
      uint32_t wFmtSize;
      uint16_t wExtSize = 0;    /* extended field for non-PCM */
  
-@@ -587,6 +587,11 @@
-     lsx_readdw(ft, &dwAvgBytesPerSec);   /* Average bytes/second */
-     lsx_readw(ft, &(wav->blockAlign));   /* Block align */
-     lsx_readw(ft, &wBitsPerSample);      /* bits per sample per channel */
-+    if (wBitsPerSample == 0)
-+    {
-+        lsx_fail_errno(ft, SOX_EHDR, "WAV file bits per sample is zero");
-+        return SOX_EOF;
-+    }
-     len -= 16;
+@@ -954,6 +959,11 @@
+         break;
  
-     if (wav->formatTag == WAVE_FORMAT_EXTENSIBLE)
+     default:
++        if (ft->encoding.bits_per_sample == 0)
++        {
++            lsx_fail_errno(ft, SOX_EHDR, "WAV file bits per sample is zero");
++            return SOX_EOF;
++        }
+         wav->numSamples = div_bits(qwDataLength, ft->encoding.bits_per_sample) / ft->signal.channels;
+         ft->signal.length = wav->numSamples * ft->signal.channels;
+     }
+--- a/src/testall.sh
++++ b/src/testall.sh
+@@ -67,3 +67,4 @@
+ t vox -r 8130
+ t wav
+ t wve
++t wav -e gsm-full-rate