Debian Fdkaac vulnerabilities

CVE-2023-34824 [MEDIUM] CVE-2023-34824: fdkaac - fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in caf_info... fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in caf_info function in caf_reader.c. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 1.0.6-0.1) sid: resolved (fixed in 1.0.6-0.1) trixie: resolved (fixed in 1.0.6-0.1)

CVE-2023-34823 [MEDIUM] CVE-2023-34823: fdkaac - fdkaac before 1.0.5 was discovered to contain a stack overflow in read_callback ... fdkaac before 1.0.5 was discovered to contain a stack overflow in read_callback function in src/main.c. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 1.0.6-0.1) sid: resolved (fixed in 1.0.6-0.1) trixie: resolved (fixed in 1.0.6-0.1)

CVE-2022-37781 [HIGH] CVE-2022-37781: fdkaac - fdkaac v1.0.3 was discovered to contain a heap buffer overflow via __interceptor... fdkaac v1.0.3 was discovered to contain a heap buffer overflow via __interceptor_memcpy.part.46 at /sanitizer_common/sanitizer_common_interceptors.inc. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 1.0.6-0.1) sid: resolved (fixed in 1.0.6-0.1) trixie: resolved (fixed in 1.0.6-0.1)

CVE-2022-36148 [MEDIUM] CVE-2022-36148: fdkaac - fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE)... fdkaac commit 53fe239 was discovered to contain a floating point exception (FPE) via wav_open at /src/wav_reader.c. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 1.0.6-0.1) sid: resolved (fixed in 1.0.6-0.1) trixie: resolved (fixed in 1.0.6-0.1)