Osgeo Gdal vulnerabilities

6 known vulnerabilities affecting osgeo/gdal.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2026-4738CRITICALCVSS 9.4fixed in 3.11.02026-03-24
CVE-2026-4738 [CRITICAL] CWE-119 CVE-2026-4738: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo gdal Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo gdal (frmts/zlib/contrib/infback9 modules). This vulnerability is associated with program files inftree9.C‎. This issue affects gdal: before 3.11.0.
cvelistv5nvd
CVE-2025-29480MEDIUMCVSS 5.5v3.10.22025-04-07
CVE-2025-29480 [MEDIUM] CWE-120 CVE-2025-29480: Buffer Overflow vulnerability in gdal 3.10.2 allows a local attacker to cause a denial of service vi Buffer Overflow vulnerability in gdal 3.10.2 allows a local attacker to cause a denial of service via the OGRSpatialReference::Release function. NOTE: the Supplier indicates that the report is invalid and could not be reproduced.
nvd
CVE-2021-45943MEDIUMCVSS 5.5≥ 3.3.0, ≤ 3.4.02022-01-01
CVE-2021-45943 [MEDIUM] CWE-787 CVE-2021-45943: GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile (call GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile (called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment).
nvdosv
CVE-2019-25050HIGHCVSS 7.8≥ 2.4.2, ≤ 3.0.42021-07-20
CVE-2019-25050 [HIGH] CWE-787 CVE-2019-25050: netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4 netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4_get_att_tc and nc_get_att_text) and in uffd_cleanup (called from netCDFDataset::~netCDFDataset and netCDFDataset::~netCDFDataset).
nvdosv
CVE-2019-17545CRITICALCVSS 9.8≤ 3.0.12019-10-14
CVE-2019-17545 [CRITICAL] CWE-415 CVE-2019-17545: GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp when the 10 GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp when the 10MB threshold is exceeded.
nvdosv
CVE-2019-17546HIGHCVSS 8.8≤ 3.0.12019-10-14
CVE-2019-17546 [HIGH] CWE-190 CVE-2019-17546: tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an i tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition.
nvdosv