A flaw was found in sox 14.4.2. The startread function in wav.c in Sound eXchange(SoX) 14.4.2 can cause a denial of service(divide-by-zero error and application crash) via a crafted wav file. References: http://seclists.org/fulldisclosure/2017/Jul/81
Created sox tracking bugs for this issue: Affects: fedora-all [bug 1480678]