Important: Red Hat Security Advisory: gpsd security update

An update for gpsd is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

RHEL 10 : gpsd (RHSA-2026:1621)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:1621 advisory. gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the...

CLSA-2026-1769593159 gpsd-minimal: Fix of 2 CVEs

CVE-2025-67268: fix heap-based out-of-bounds write in NMEA2000 Driver - CVE-2025-67269: fix integer underflow leading to DoS in NAVCOM packet parsing...

RLSA-2026:0770 Important: gpsd security update

gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the location/course/velocity of the sensor available to be queried on TCP port 2947 of the host computer. With gpsd, multiple GPS client applications such as...

Oracle Linux 10 : gpsd (ELSA-2026-0770)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0770 advisory. - fix buffer overflow in NMEA2000 driver CVE-2025-67268 Tenable has extracted the preceding description block directly from the Oracle Linux security...

RockyLinux 10 : gpsd (RLSA-2026:0770)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0770 advisory. gpsd: gpsd: Denial of Service due to malformed NAVCOM packet parsing CVE-2025-67269 gpsd: gpsd: Arbitrary code execution via heap-based out-of-bounds...

RLSA-2026:0771 Important: gpsd-minimal security update

gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the location/course/velocity of the sensor available to be queried on TCP port 2947 of the host computer. The Rocky Enterprise Software Foundation support fo...

Important: Red Hat Security Advisory: gpsd security update

An update for gpsd is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

[SECURITY] [DLA 4441-1] gpsd security update

From: Bastien Roucariès [email protected] To: [email protected] Subject: SECURITY DLA 4441-1 gpsd security update - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4441-1 [email protected]...

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : GPSd vulnerabilities (USN-7948-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7948-1 advisory. It was discovered that GPSd incorrectly handled processing NMEA2000 packets. An attacker could use this issue to cause GPSd t...

Ubuntu: Security Advisory (USN-7948-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

Linux Distros Unpatched Vulnerability : CVE-2025-67268

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles...

gpsd 安全漏洞

gpsd is a gpsd open source daemon for receiving GPS data. A security vulnerability exists in previous versions of gpsd dc966aa, which originates from a heap-based out-of-bounds write in the drivers/drivernmea2000.c file, which could lead to memory corruption, denial of service, and execution of...

CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

PT-2026-1057

Name of the Vulnerable Software and Affected Versions gpsd versions prior to commit dc966aa Description The software contains a heap-based out-of-bounds write issue in the drivers/driver nmea2000.c file. The hnd 129540 function, responsible for processing NMEA2000 PGN 129540 packets GNSS Satellit...