-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 18 Jan 2026 12:45:58 +0100
Source: gpsd
Binary: gpsd gpsd-clients gpsd-clients-dbgsym gpsd-dbgsym gpsd-tools gpsd-tools-dbgsym libgps-dev libgps28 libgps28-dbgsym libqgpsmm-dev libqgpsmm28 libqgpsmm28-dbgsym python3-gps python3-gps-dbgsym
Architecture: ppc64el
Version: 3.22-4.1+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-conova-02) <buildd_ppc64el-ppc64el-conova-02@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 gpsd       - Global Positioning System - daemon
 gpsd-clients - Global Positioning System - clients
 gpsd-tools - Global Positioning System - tools
 libgps-dev - Global Positioning System - development files
 libgps28   - Global Positioning System - library
 libqgpsmm-dev - Global Positioning System - Qt wrapper for libgps (development)
 libqgpsmm28 - Global Positioning System - Qt wrapper for libgps
 python3-gps - Global Positioning System - Python 3 libraries
Closes: 1124799 1124800
Changes:
 gpsd (3.22-4.1+deb12u1) bookworm; urgency=medium
 .
   * Non-Maintainer Upload by LTS team
   * Remove BD: makedev, breaks debusine
   * Fix CVE-2025-67268 (Closes: #1124800).
     gpsd contains a heap-based out-of-bounds write
     vulnerability in the drivers/driver_nmea2000.c file.
     The hnd_129540 function, which handles NMEA2000 PGN 129540
     (GNSS Satellites in View) packets, fails to validate the
     user-supplied satellite count against the size of the skyview
     array (184 elements). This allows an attacker to write beyond
     the bounds of the array by providing a satellite count up
     to 255, leading to memory corruption, Denial of Service (DoS),
     and potentially arbitrary code execution.
   * Fix CVE-2025-67269 (Closes: #1124799).
     An integer underflow vulnerability exists in the `nextstate()`
     function in `gpsd/packet.c`.
     When parsing a NAVCOM packet, the payload length is calculated
     using `lexer->length = (size_t)c - 4` without checking if
     the input byte `c` is less than 4. This results in an unsigned
     integer underflow, setting `lexer->length` to a very large value
     (near `SIZE_MAX`). The parser then enters a loop attempting to
     consume this massive number of bytes, causing 100% CPU utilization
     and a Denial of Service (DoS) condition.
Checksums-Sha1:
 bc4e928e043b5d07d29406b4b8278ef3ef5dfec2 1725996 gpsd-clients-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 3ad12b31121690214b5a525956ae325657c7654a 463376 gpsd-clients_3.22-4.1+deb12u1_ppc64el.deb
 ede113f00d391815d925e32f870605ac7db85880 2006552 gpsd-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 d66910c1093fde220277d489db5af05c8d49c0ec 1241692 gpsd-tools-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 5141f7594b566622aae74cd4d2f28a74b3f4f0bf 303236 gpsd-tools_3.22-4.1+deb12u1_ppc64el.deb
 7b89e588bcd4a96264377a725d0c52ee6f23a2ce 21293 gpsd_3.22-4.1+deb12u1_ppc64el-buildd.buildinfo
 1cf87b6669fb183f03a808c9f0978ee9fe66296a 385520 gpsd_3.22-4.1+deb12u1_ppc64el.deb
 ef655eabe3881dbbc0a1b8ce482805b53b54b3c3 139144 libgps-dev_3.22-4.1+deb12u1_ppc64el.deb
 66f8648b16c43dd240c9911d4abac4bd7a028abf 152756 libgps28-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 99151b8608431768c1f787d180f2dfe264f38086 85336 libgps28_3.22-4.1+deb12u1_ppc64el.deb
 579b61491d78d17b075f1aa477bf06b73957dc2d 30288 libqgpsmm-dev_3.22-4.1+deb12u1_ppc64el.deb
 f11ccdcaedd20400a35b82fd9ce385975e49f6a9 377276 libqgpsmm28-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 10233271e2dadcbf43bbc38ced7d1b3481e95842 88300 libqgpsmm28_3.22-4.1+deb12u1_ppc64el.deb
 6109d3135706c014311b5bfc86e370c8d65a73e3 63524 python3-gps-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 46eac21397a1b45e1990a78eb62e9eac70f3042c 136836 python3-gps_3.22-4.1+deb12u1_ppc64el.deb
Checksums-Sha256:
 9d936b94e38e8764dd7321af69ac01939ae7b06831b93f98ad278c8991463d70 1725996 gpsd-clients-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 62cfb72aebbb4cc2b7322ea599dbd7dffb10e30075b369d7f317e83337184497 463376 gpsd-clients_3.22-4.1+deb12u1_ppc64el.deb
 de340b4e6557bac3d7684ee7b865919c6b128043913e1e847ffbdbe9a9c703bf 2006552 gpsd-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 c61edcf7ddf037a96194fc4da4f507849b4f6cd92434cfb467403ddf5139b272 1241692 gpsd-tools-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 be549895b2702aafb4d65d736a73dd00d00efb58b5d10502079740a5ac764cda 303236 gpsd-tools_3.22-4.1+deb12u1_ppc64el.deb
 e5fda4798a99a9d3181adb584984f2ca99feb7c937a09b34cedf0582bda83b4b 21293 gpsd_3.22-4.1+deb12u1_ppc64el-buildd.buildinfo
 3cac2baf71c04f62a900c0a7c642620f301d67aac3456f5373139afa1c078fff 385520 gpsd_3.22-4.1+deb12u1_ppc64el.deb
 e4e189ea8be592cbbc139a42d663d651104f7ac04608d1118c8c8f0c0d003d46 139144 libgps-dev_3.22-4.1+deb12u1_ppc64el.deb
 595171fa005a6ef0f71ffa18b598154e51c17586bf60df6379c83154cafef207 152756 libgps28-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 23b0a3f858710f5d0e434fdde1e44b71be93c2ed411a28a7fc66165c0f32a456 85336 libgps28_3.22-4.1+deb12u1_ppc64el.deb
 eedab897775f62b7d59f62adfbbba1f8e6a1a7f2a6bfd2fe0ae116cfb0f523c2 30288 libqgpsmm-dev_3.22-4.1+deb12u1_ppc64el.deb
 9196f6eb4ba983770562d6bcf72885bb7358f93c70d4a4a962e7e1853fba3fc9 377276 libqgpsmm28-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 d91241a5309c2f20c4125c6b70649f3ee6c9f9209df7d66853799a12cd377c84 88300 libqgpsmm28_3.22-4.1+deb12u1_ppc64el.deb
 c3ef3a8ae87334c7ffd9c03ec555eb804b42c9b5209b0f78347f279ea07a18f9 63524 python3-gps-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 d4551557360bc95a48e095c8b6d465de0a2e6e27b71c3fa86b894b8290a90156 136836 python3-gps_3.22-4.1+deb12u1_ppc64el.deb
Files:
 79e1e5f2b10ac83d551dd9c5f122a998 1725996 debug optional gpsd-clients-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 bfe1cc30bab1202f2244f676ea12b485 463376 misc optional gpsd-clients_3.22-4.1+deb12u1_ppc64el.deb
 ad6a5a2608ff05dcaa557973cda90d1f 2006552 debug optional gpsd-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 0d157a12e85203d0bbff1d7dd104de77 1241692 debug optional gpsd-tools-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 43d03e263dab6353aeba472f526e5c30 303236 misc optional gpsd-tools_3.22-4.1+deb12u1_ppc64el.deb
 c57da3de6b360c2747d94009164d43c2 21293 misc optional gpsd_3.22-4.1+deb12u1_ppc64el-buildd.buildinfo
 f1f3ff67ae0296a45926a71d85aa358f 385520 misc optional gpsd_3.22-4.1+deb12u1_ppc64el.deb
 d2b53c2648ce460722d5d8386eb1f664 139144 libdevel optional libgps-dev_3.22-4.1+deb12u1_ppc64el.deb
 63a5f652d59d677cf9ef04a1d9085a18 152756 debug optional libgps28-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 2a6bc122ba4345fe975c643356a79ad1 85336 libs optional libgps28_3.22-4.1+deb12u1_ppc64el.deb
 91a67a4ceb983b52aa54b78d3bc896e5 30288 libdevel optional libqgpsmm-dev_3.22-4.1+deb12u1_ppc64el.deb
 a4db1434a53d4f68ff6924f029e8a11a 377276 debug optional libqgpsmm28-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 67b46b5f73eb22fd4ba0f160c2c133b6 88300 libs optional libqgpsmm28_3.22-4.1+deb12u1_ppc64el.deb
 3e5e4e5c6948f23dfdd83e9c1be045e4 63524 debug optional python3-gps-dbgsym_3.22-4.1+deb12u1_ppc64el.deb
 27819d6d8b1faeef957f81422259a912 136836 python optional python3-gps_3.22-4.1+deb12u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=D/uJ
-----END PGP SIGNATURE-----