Not a user yet?
Log in Register for free Suggest a product
Update

USN-7660-1: fdkaac vulnerabilities

Ubuntu ServerUbuntu Server
Canonical

USN-7660-1: fdkaac vulnerabilities
Publication date: 22 July 2025
Overview: Several security issues were fixed in fdkaac.

Packages
fdkaac - Command line frontend for libfdk-aac

Details
It was discovered that fdkaac did not correctly handle certain input. If a
user or automated system were tricked into opening a specially crafted
file, an attacker could possibly use this issue to cause a denial of
service. (CVE-2022-36148)

It was discovered that fdkaac did not correctly handle certain memory
operations. If a user or automated system were tricked into opening a
specially crafted file, an attacker could possibly use this issue to cause
a denial of service. (CVE-2022-37781, CVE-2023-34823, CVE-2023-34824)

Update instructions
The problem can be corrected by updating your system to the following package versions:

  • 25.04 plucky fdkaac – 1.0.0-1ubuntu0.25.04.1
  • 24.04 noble fdkaac – 1.0.0-1ubuntu0.24.04.1~esm1
  • 22.04 jammy fdkaac – 1.0.0-1ubuntu0.22.04.1~esm1
  • 20.04 focal fdkaac – 0.6.3-1ubuntu0.20.04.1~esm1
  • 18.04 bionic fdkaac – 0.6.3-1ubuntu0.18.04.1~esm1
  • 16.04 xenial fdkaac – 0.6.2-1ubuntu0.1~esm1
More updatesTo the product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Receive Important Update Messages Stay tuned for upcoming Canonical updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad