Lucene search
K

162 matches found

CVE
CVE
added 2 days ago5 views

CVE-2026-58459

gpsd (through release-3.27.5) contains a command-injection in gpsprof when processing the GPS device subtype value. The subtype is written into a generated gnuplot program via a set title statement with only quotes escaped, enabling arbitrary shell commands to execute as the user running gnuplot ...

8.4CVSS6.3AI score0.00726EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago4 views

EUVD-2026-42622

gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof that allows attackers who control the GPS device subtype value to execute arbitrary shell commands by embedding backtick payloads in the gnuplot plot title without proper escaping. The...

8.4CVSS6.3AI score0.00726EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability in gpsd

There is an integer underflow vulnerability in the nextstate function in gpsd/packet.c in gpsd versions prior to the commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4, without checking whether the input...

7.5CVSS5.2AI score0.0047EPSS
Exploits2References3
Rosalinux
Rosalinux
added 2026/03/22 8:49 p.m.9 views

Advisory ROSA-SA-2026-3228

software: gpsd 3.21 WASP: ROSA-CHROME unaffected versions = gpsd-3.21-5 affected versions gpsd-3.21-5 CVE-ID: CVE-2025-67268 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: Vulnerability in gpsd before commit dc966aa: in drivers/drivernmea2000.c, function hnd129540 handling PGN 129540 - GNSS Satellite...

9.8CVSS6.1AI score0.00674EPSS
Exploits2
OSV
OSV
added 2026/03/20 2:23 p.m.6 views

OESA-2026-1642 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: fs/xattr: missing fdput in fremovexattr error path In the Linux kernel, the fremovexattr syscall calls fdget to acquire a file reference but returns early withou...

8.8CVSS6.3AI score0.00423EPSS
Exploits1References19
OSV
OSV
added 2026/03/07 12:3 a.m.3 views

OSV-2026-359 Segv on unknown address in gpsd_vlog

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=490142464 Crash type: Segv on unknown address Crash state: gpsdvlog gpsdlog processGSV...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/02/25 12:16 a.m.6 views

OSV-2026-307 Global-buffer-overflow in navcom_parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=486709178 Crash type: Global-buffer-overflow READ 1 Crash state: navcomparse gpsdpoll FuzzDrivers.c...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/14 12:9 a.m.5 views

OSV-2026-240 Use-of-uninitialized-value in packet_get1

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=483928517 Crash type: Use-of-uninitialized-value Crash state: packetget1 gpsdpoll FuzzDrivers.c...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/11 12:10 a.m.5 views

OSV-2026-226 UNKNOWN WRITE in decode_xa2_00

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=482909898 Crash type: UNKNOWN WRITE Crash state: decodexa200 tsipparseinput gpsdpoll...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/09 12:15 a.m.6 views

OSV-2026-212 UNKNOWN READ in gpsd_poll

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=482617785 Crash type: UNKNOWN READ Crash state: gpsdpoll FuzzDriversStructured.c...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/07 12:3 a.m.5 views

OSV-2026-205 UNKNOWN READ in gpsd_poll

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=481932457 Crash type: UNKNOWN READ Crash state: gpsdpoll FuzzDrivers.c...

5.3AI score
Exploits0References1
OSV
OSV
added 2026/02/02 10:7 a.m.3 views

RHSA-2026:1621 Red Hat Security Advisory: gpsd security update

Bulletin has no description...

7.5CVSS4.9AI score0.00674EPSS
Exploits2References10
RedHat Linux
RedHat Linux
added 2026/02/02 1:52 a.m.8 views

Important: Red Hat Security Advisory: gpsd security update

An update for gpsd is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.2AI score0.00674EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/02/02 12:0 a.m.5 views

RHEL 10 : gpsd (RHSA-2026:1621)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1621 advisory. gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the...

9.8CVSS6.2AI score0.00674EPSS
Exploits2References4
OSV
OSV
added 2026/01/31 12:10 a.m.4 views

OSV-2026-167 Use-of-uninitialized-value in aivdm_analyze

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=479564939 Crash type: Use-of-uninitialized-value Crash state: aivdmanalyze gpsdpoll FuzzDrivers.c...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/30 12:0 a.m.3 views

Photon OS 4.0: Gpsd PHSA-2026-4.0-0948

An update of the gpsd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0948. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS5.8AI score0.00674EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2026/01/30 12:0 a.m.4 views

Mageia: Security Advisory (MGASA-2026-0028)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.00674EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/01/30 12:0 a.m.6 views

Photon OS 4.0: Gpsd PHSA-2026-4.0-0947

An update of the gpsd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0947. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS5.8AI score0.0047EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/01/30 12:0 a.m.5 views

Photon OS 5.0: Gpsd PHSA-2026-5.0-0737

An update of the gpsd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0737. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS5.8AI score0.0047EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/01/30 12:0 a.m.4 views

Photon OS 5.0: Gpsd PHSA-2026-5.0-0738

An update of the gpsd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0738. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS5.8AI score0.00674EPSS
Exploits2References2
Rows per page
Query Builder