CLSA-2026-1769593159 gpsd-minimal: Fix of 2 CVEs

CVE-2025-67268: fix heap-based out-of-bounds write in NMEA2000 Driver - CVE-2025-67269: fix integer underflow leading to DoS in NAVCOM packet parsing...

Oracle Linux 10 : gpsd (ELSA-2026-0770)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0770 advisory. - fix buffer overflow in NMEA2000 driver CVE-2025-67268 Tenable has extracted the preceding description block directly from the Oracle Linux security...

[SECURITY] [DLA 4441-1] gpsd security update

From: Bastien Roucariès [email protected] To: [email protected] Subject: SECURITY DLA 4441-1 gpsd security update - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4441-1 [email protected]...

CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

PT-2026-1057

Name of the Vulnerable Software and Affected Versions gpsd versions prior to commit dc966aa Description The software contains a heap-based out-of-bounds write issue in the drivers/driver nmea2000.c file. The hnd 129540 function, responsible for processing NMEA2000 PGN 129540 packets GNSS Satellit...