Alerts This Week
Warning Icon 1 1,146
Alerts This Week
Warning Icon 1 1,146

Debian 11: gpsd Critical DoS Heap Issue DLA-4441-1 CVE-2025-67268

debian lts
Calendar Grey January 19, 2026
Dist Debian Esm H88
Critical security update for gpsd on Debian LTS addressing multiple vulnerabilities including DoS risks and heap corruption.
Multiple vulnerabilities were fixed in gpsd a service daemon that monitors one or more GNSS (GPS) or AIS receivers attached to a host computer through serial or USB ports

Summary

Multiple vulnerabilities were fixed in gpsd a service daemon that
monitors one or more GNSS (GPS) or AIS receivers attached to a host computer
through serial or USB ports.

CVE-2025-67268

gpsd contains a heap-based out-of-bounds write
vulnerability in the drivers/driver_nmea2000.c file.
The hnd_129540 function, which handles NMEA2000 PGN 129540
(GNSS Satellites in View) packets, fails to validate the
user-supplied satellite count against the size of the skyview
array (184 elements). This allows an attacker to write beyond
the bounds of the array by providing a satellite count up
to 255, leading to memory corruption, Denial of Service (DoS),
and potentially arbitrary code execution.

CVE-2025-67269

An integer underflow vulnerability exists in the `nextstate()`
function in `gpsd/packet.c`.
When parsing a NAVCOM packet, the payload length is calculated
using `lexer->length = (size_t)c - 4` without checking if

Read the Full Advisory


Severity
critical
Lowest
Low
Medium
High
Critical

Package: gpsd
Version: 3.22-4+deb11u1
CVE ID: CVE-2025-67268 CVE-2025-67269
Debian Bug: 1124799 1124800

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here