There is a new pull request by ndowens against master on the void-packages repository

https://github.com/ndowens/void-packages libmysofa
https://github.com/void-linux/void-packages/pull/17850

libmysofa: update to 0.9
Update to 0.9, which also includes fix for
CVE-2019-20016

Signed-off-by: Nathan Owens <ndowens04@gmail.com>

A patch file from https://github.com/void-linux/void-packages/pull/17850.patch is attached