Updated sox packages fix security vulnerability:

The sox command line tool is affected by two heap-based buffer
overflows, respectively located in functions start_read() and
AdpcmReadBlock(). A specially crafted wav file can be used to trigger
the vulnerabilities (CVE-2014-8145).