| Release | Version |
|---|---|
| stretch | 2.1.2+dfsg-5 |
| stretch (security) | 2.1.2+dfsg-5+deb9u1 |
| buster | 2.4.0+dfsg-1 |
| bullseye | 3.2.2+dfsg-2+deb11u1 |
| bookworm | 3.4.3+dfsg-1 |
| sid | 3.4.3+dfsg-1 |
| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2021-45943 | fixed | vulnerable | vulnerable | vulnerable | vulnerable | GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::C ... |
| CVE-2019-25050 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow i ... |
| CVE-2019-17545 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ... |
| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2019-17546 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0. ... |
| Bug | Description |
|---|---|
| CVE-2005-3581 | GDAL before 1.3.0-r1 allows local users in the portage group to increa ... |
| DSA / DLA | Description |
|---|---|
| DLA-2877-1 | gdal - security update |
| DLA-2147-1 | gdal - security update |
| DLA-1984-1 | gdal - security update |