CVE-2019-8357by Jeremyin Security Bulletinson Posted on February 16, 2019 An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference.