Все бюллетени/sisyphus/ALT-PU-2015-1470-1
ALT-PU-2015-1470-1

Обновление пакета gpsd в ветке sisyphus

Версия3.14-alt1
Задание#144843
Опубликовано2015-05-28
Макс. серьёзностьMEDIUM
Серьёзность:

Закрытые проблемы (1)

CVE-2013-2038
MEDIUM4.3

The NMEA0183 driver in gpsd before 3.9 allows remote attackers to cause a denial of service (daemon termination) and possibly execute arbitrary code via a GPS packet with a malformed $GPGGA interpreted sentence that lacks certain fields and a terminator. NOTE: a separate issue in the AIS driver was also reported, but it might not be a vulnerability.

Опубликовано: 2014-02-06Изменено: 2026-04-29
CVSS 2.0СРЕДНЯЯ 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:N/A:P
Ссылки