Yes, there was a buffer overflow bug.
Yes it is fixed now.
No, the exploiter did not earn the "8 of 8".
The "8 of 8" is unaffected.