CVE-2022-36148

fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at /src/wav_reader.c.

CVE-2023-34824

fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in caf_info function in caf_reader.c.

CVE-2023-34823

fdkaac before 1.0.5 was discovered to contain a stack overflow in read_callback function in src/main.c.