An issue was discovered in libsndfile 1.0.28. There is a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. https://nvd.nist.gov/vuln/detail/CVE-2018-19432