CVE-2023-43628
published 2023-12-05CVE-2023-43628: An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory…
PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.23%
65.1th percentile
An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gpsd | — | — |
| gpsd | gpsd | — | — |
| gpsd_project | gpsd | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
vendor_debian5.9LOW
vendor_redhat5.9MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
gpsd: integer overflow
vendor_redhat·2023-12-05·CVSS 5.9
CVE-2023-43628 [MEDIUM] CWE-191 gpsd: integer overflow
gpsd: integer overflow
An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability.
An integer overflow vulnerability was found in gpsd. A specially crafted network packet can lead to an integer overflow and cause memory corruption.
Statement: The identified flaw is absent in all versions of the gpsd release currently shipped by Red Hat.
Package: gpsd-minimal (Red Hat Enterprise Linux 9) - Not affected
Debian
CVE-2023-43628: gpsd - An integer underflow vulnerability exists in the NTRIP Stream Parsing functional...
vendor_debian·2023·CVSS 5.9
CVE-2023-43628 [MEDIUM] CVE-2023-43628: gpsd - An integer underflow vulnerability exists in the NTRIP Stream Parsing functional...
An integer underflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-j8gq-jmq2-28cw: An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3
ghsa_unreviewed·2023-12-05
CVE-2023-43628 [MEDIUM] CWE-191 GHSA-j8gq-jmq2-28cw: An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3
An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability.
No detection rules found.
No public exploits indexed.
Talos
Remote code execution vulnerabilities found in Buildroot, Foxit PDF Reader
blogs_talos·2023-12-06·CVSS 8.8
[HIGH] Remote code execution vulnerabilities found in Buildroot, Foxit PDF Reader
Cisco Talos has disclosed 10 vulnerabilities over the past two weeks, including nine that exist in a popular online PDF reader that offers a browser plugin.
Attackers could exploit these vulnerabilities in the Foxit PDF Reader to carry out a variety of malicious actions, but most notably could gain the ability to execute arbitrary code on the targeted machine. Foxit aims to have feature parity with Adobe Acrobat Reader, the most popular PDF-reading software currently on the market. The company offers paid versions of its software for a variety of users, including individuals and enterprises. There are also browser plugins of Foxit that run in a variety of web browsers, including Google Chrome and Mozilla Firefox.
Talos’ Vulnerability Research team also found an integer overflow vulnerabi
Talos
Remote code execution vulnerabilities found in Buildroot, Foxit PDF Reader
blogs_talos·2023-12-06·CVSS 8.8
[HIGH] Remote code execution vulnerabilities found in Buildroot, Foxit PDF Reader
## Remote code execution vulnerabilities found in Buildroot, Foxit PDF Reader
Cisco Talos has disclosed 10 vulnerabilities over the past two weeks, including nine that exist in a popular online PDF reader that offers a browser plugin.
Attackers could exploit these vulnerabilities in the Foxit PDF Reader to carry out a variety of malicious actions, but most notably could gain the ability to execute arbitrary code on the targeted machine. Foxit aims to have feature parity with Adobe Acrobat Reader, the most popular PDF-reading software currently on the market. The company offers paid versions of its software for a variety of users, including individuals and enterprises. There are also browser plugins of Foxit that run in a variety of web browsers, including Google Chrome and Mozilla Firefo
Bugzilla
CVE-2023-43628 gpsd: integer overflow
bugzilla·2023-12-05·CVSS 7.5
CVE-2023-43628 [HIGH] CVE-2023-43628 gpsd: integer overflow
CVE-2023-43628 gpsd: integer overflow
An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1~dev. A specially crafted network packet can lead to memory corruption. An attacker can send a malicious packet to trigger this vulnerability.
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1860
https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1860
Discussion:
Created gpsd tracking bugs for this issue:
Affects: epel-all [bug 2252974]
Affects: fedora-all [bug 2252973]
---
It seems this issue isn't present in any gpsd release, just the development code. I can reproduce it after commit c1c1c2706c4f5b9bf3be437d0a8f0106ef00c5e7 and it's fixed in commit 3e5c6c28c422102dd453e31912e1e79d1f7ff7f2.
2023-12-05
Published