Astra Linux – Vulnerability in gpsd

There is an integer underflow vulnerability in the nextstate function in gpsd/packet.c in gpsd versions prior to the commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4, without checking whether the input...

CVE-2025-67269

An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...

UBUNTU-CVE-2025-67269

An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...

CVE-2025-67269

An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...

CVE-2025-67269

CVE-2025-67269 describes an integer underflow in gpsd/packet.c:nextstate() during NAVCOM packet parsing. The payload length is computed as lexer->length = (size_t)c - 4 without validating that c >= 4, causing an unsigned underflow to a very large value and a loop that can exhaust CPU (DoS)....

PT-2026-1058

Name of the Vulnerable Software and Affected Versions gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7 Description An integer underflow issue exists in the nextstate function within gpsd/packet.c. This occurs when parsing a NAVCOM packet, where the payload length is calculat...