CLSA-2026-1769424492

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1769424492.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2026-1769424492
Upstream
Published
2026-01-26T10:48:15Z
Modified
2026-06-01T00:32:37.225385473Z
Summary
gpsd-minimal: Fix of 2 CVEs
Details
  • CVE-2025-67268: fix heap-based buffer overrun in NMEA2000 GNSS satellite handling
  • CVE-2025-67269: fix integer underflow in NAVCOM packet parsing to prevent excessive payload length and CPU-exhaustion
References

Affected packages

TuxCare:AlmaLinux:9.6 / gpsd-minimal

Package

Name
gpsd-minimal
Purl
pkg:rpm/tuxcare/gpsd-minimal?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.25-4.el9_6.2.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1769424492.json"

TuxCare:AlmaLinux:9.6 / gpsd-minimal-clients

Package

Name
gpsd-minimal-clients
Purl
pkg:rpm/tuxcare/gpsd-minimal-clients?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.25-4.el9_6.2.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1769424492.json"