5dee (=0.1.0), a5py (=0.1.1) +457 more potentially affected by CVE-2026-8212 via gdal (>=2.1.0 <=3.13.0)

gdal PYPI version =2.1.0, =0.0.1, =0.9.0, =0.6.1, =0.1.2, =1.0.1, =0.0.6, =1.0.0, =1.9.3, =0.2.0, =1.6.2, =0.0.1, =0.0.5 and more Source cves: CVE-2026-8212 Source advisory: OSV:GHSA-R5M4-5VWW-W9F5...

aoh (>=1.0.1 <=1.1.0), beratools (=0.2.2) +25 more potentially affected by CVE-2026-8086 via gdal (>=3.0.1 <=3.12.1)

gdal PYPI version =3.0.1, =1.0.1, =0.1.1, =0.0.7, =2.0.1, =0.4.0, =0.2.92, =0.9.2, =0.10.3, =0.4.5, =2.6.0, =2.7.0 - hyp3lib =4.0.1 and more Source cves: CVE-2026-8086 Source advisory: SNYK:PYTHON-GDAL-16535527...

CVE-2026-8087

A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. Impacted is the function GDnentries of the file frmts/hdf4/hdf-eos/GDapi.c. Performing a manipulation of the argument DataFieldName results in heap-based buffer overflow. The attack must be initiated from a local position. The...

Linux Distros Unpatched Vulnerability : CVE-2021-45943

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile called from PCIDSK::CPCIDSKSegment::ReadFromFile and...

5dee (=0.1.0), a5py (>=0.1.0 <=0.1.1) +483 more potentially affected by unknown CVE via gdal (>=3.0.1 <=3.9.0)

gdal PYPI version =3.0.1, =0.1.0, =0.0.1, =0.9.0, =0.6.1, =0.1.2, =0.1.1a2, =1.0.1, =1.0.0, =1.9.3, =0.2.0, =1.6.2, =0.0.1, =0.0.5 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-GDAL-8445270...

PT-2021-7494 · Gdal +1 · Gdal +1

Name of the Vulnerable Software and Affected Versions: GDAL versions 3.3.0 through 3.4.0 Description: The issue is related to a heap-based buffer overflow in the PCIDSK::CPCIDSKFile::ReadFromFile function, which can be exploited by a remote attacker to cause a denial of service. This function is...

PYSEC-2021-888

netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4getatt called from nc4getatttc and ncgetatttext and in uffdcleanup called from netCDFDataset::netCDFDataset and netCDFDataset::netCDFDataset...

CVE-2019-25050

CVE-2019-25050 affects netCDF in GDAL 2.4.2 through 3.0.4. The issue is a stack-based buffer overflow in two code paths: nc4_get_att (invoked via nc4_get_att_tc and nc_get_att_text) and in uffd_cleanup (invoked from the netCDFDataset destructor). The connected documents consistently describe the ...