14 matches found
Advisory ROSA-SA-2026-3228
software: gpsd 3.21 WASP: ROSA-CHROME unaffected versions = gpsd-3.21-5 affected versions gpsd-3.21-5 CVE-ID: CVE-2025-67268 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: Vulnerability in gpsd before commit dc966aa: in drivers/drivernmea2000.c, function hnd129540 handling PGN 129540 - GNSS Satellite...
Mageia: Security Advisory (MGASA-2026-0028)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2025-67268
gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...
SUSE CVE-2025-67269
An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...
gpsd 安全漏洞
gpsd is a gpsd open source daemon for receiving GPS data. A security vulnerability exists in previous versions of gpsd dc966aa, which originates from a heap-based out-of-bounds write in the drivers/drivernmea2000.c file, which could lead to memory corruption, denial of service, and execution of...
EUVD-2013-2020
Malware in sbrugna...
EUVD-2023-48028
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-17937
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpsd versions 2.90 to 3.17 and microjson versions 1.0 to 1.3, an open source project, allow a stack-based buffer overflow, which may allow remote attackers to...
Ubuntu 12.04 LTS : gpsd vulnerability (USN-1820-1)
It was discovered that gpsd incorrectly handled certain malformed GPS data. An attacker could use this issue to cause gpsd to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block directly from...
UBUNTU-CVE-2013-2038
The NMEA0183 driver in gpsd before 3.9 allows remote attackers to cause a denial of service daemon termination and possibly execute arbitrary code via a GPS packet with a malformed $GPGGA interpreted sentence that lacks certain fields and a terminator. NOTE: a separate issue in the AIS driver was...
gpsd < 2.8 gpsd_report() Function Remote Format String
Binary data 2559.prm...
[Full-Disclosure] DMA[2005-0125a] - 'berlios gpsd format string vulnerability'
DMA2005-0125a - 'berlios gpsd remake of pygps format string vulnerability' Author: Kevin Finisterre Vendor: http://gpsd.berlios.de, http://www.pygps.org Product: 'gpsd' References: http://www.digitalmunition.com/DMA2005-0125a.txt Description: gpsd is a service daemon that monitors a GPS attached ...
CVE-2004-1388
Format string vulnerability in the gpsdreport function for BerliOS GPD daemon gpsd, formerly pygps 1.9.0 through 2.7 allows remote attackers to execute arbitrary code via certain GPS requests containing format string specifiers that are not properly handled in syslog calls...
Immunity Canvas: GPSD
Name| gpsd ---|--- CVE| CVE-2004-1388 Exploit Pack| CANVAS Description| gpsd Notes| References: http://www.digitalmunition.com/DMA2005-0125a.txt CVE Name: CVE-2004-1388 VENDOR: BerliOS Note: Vulnerable Versions: gpsd version 1.9.0 through version 2.7 This is a one shot exploit. Date public:...