fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in cafinfo function in cafreader.c.
{ "urgency": "unimportant" }