| Release | Version |
|---|---|
| bullseye | 3.22-4 |
| bullseye (security) | 3.22-4+deb11u1 |
| bookworm | 3.22-4.1 |
| trixie | 3.25-5 |
| forky | 3.27.5-0.1 |
| sid | 3.27.5-0.1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2025-67269 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | An integer underflow vulnerability exists in the `nextstate()` functio ... |
| CVE-2025-67268 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | gpsd before commit dc966aa contains a heap-based out-of-bounds write v ... |
| Bug | Description |
|---|---|
| CVE-2023-43628 | An integer underflow vulnerability exists in the NTRIP Stream Parsing ... |
| CVE-2018-17937 | gpsd versions 2.90 to 3.17 and microjson versions 1.0 to 1.3, an open ... |
| CVE-2013-2038 | The NMEA0183 driver in gpsd before 3.9 allows remote attackers to caus ... |
| CVE-2004-1388 | Format string vulnerability in the gpsd_report function for BerliOS GP ... |
| DSA / DLA | Description |
|---|---|
| DLA-4441-1 | gpsd - security update |
| DLA-2795-1 | gpsd - security update |
| DLA-1738-1 | gpsd - security update |