Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2018-17937

gpsd versions 2.90 to 3.17 and microjson versions 1.0 to 1.3, an open source project, allow a stack-based buffer overflow, which may allow remote attackers to execute arbitrary code on embedded platforms via traffic on Port 2947/TCP or crafted JSON inputs.

Related bugs and status

CVE-2018-17937 (Candidate) is related to these bugs:

Bug #1790855: [MIR] gpsd

Summary				In	Importance	Status
	1790855	[MIR] gpsd		gpsd (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

BID: 107029
MISC: https://ics-cert.us-ce...
MLIST: [debian-lts-announce] ...
GENTOO: GLSA-202009-17
MLIST: [debian-lts-announce] ...