[Apollo] Advisories Statistics light light Login

RLSA-2026:0770

Security Mirrored from RHSA-2026:0770
Issued at: 2026-01-21
Updated at: 2026-01-21

Synopsis

Important: gpsd security update



Description

gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the location/course/velocity of the sensor available to be queried on TCP port 2947 of the host computer. With gpsd, multiple GPS client applications (such as navigational and war-driving software) can share access to a GPS without contention or loss of data. Also, gpsd responds to queries with a format that is substantially easier to parse than NMEA 0183.

Security Fix(es):

* gpsd: gpsd: Denial of Service due to malformed NAVCOM packet parsing (CVE-2025-67269)

* gpsd: gpsd: Arbitrary code execution via heap-based out-of-bounds write in NMEA2000 packet handling (CVE-2025-67268)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 10 aarch64 Rocky Linux 10 ppc64le Rocky Linux 10 s390x Rocky Linux 10 x86_64

Fixes

2426835 2426810

CVEs

CVE-2025-67268 CVE-2025-67269

Affected packages

Rocky Linux 10 s390x - AppStream

gpsd-clients-1:3.26.1-1.el10_1.1.s390x.rpm gpsd-debuginfo-1:3.26.1-1.el10_1.1.s390x.rpm python3-gpsd-debuginfo-1:3.26.1-1.el10_1.1.s390x.rpm python3-gpsd-1:3.26.1-1.el10_1.1.s390x.rpm gpsd-1:3.26.1-1.el10_1.1.s390x.rpm gpsd-debugsource-1:3.26.1-1.el10_1.1.s390x.rpm gpsd-1:3.26.1-1.el10_1.1.src.rpm gpsd-clients-debuginfo-1:3.26.1-1.el10_1.1.s390x.rpm

Rocky Linux 10 aarch64 - AppStream

gpsd-1:3.26.1-1.el10_1.1.aarch64.rpm python3-gpsd-debuginfo-1:3.26.1-1.el10_1.1.aarch64.rpm gpsd-clients-debuginfo-1:3.26.1-1.el10_1.1.aarch64.rpm gpsd-1:3.26.1-1.el10_1.1.src.rpm python3-gpsd-1:3.26.1-1.el10_1.1.aarch64.rpm gpsd-clients-1:3.26.1-1.el10_1.1.aarch64.rpm gpsd-debuginfo-1:3.26.1-1.el10_1.1.aarch64.rpm gpsd-debugsource-1:3.26.1-1.el10_1.1.aarch64.rpm

Rocky Linux 10 ppc64le - AppStream

python3-gpsd-1:3.26.1-1.el10_1.1.ppc64le.rpm gpsd-1:3.26.1-1.el10_1.1.ppc64le.rpm gpsd-clients-debuginfo-1:3.26.1-1.el10_1.1.ppc64le.rpm gpsd-debuginfo-1:3.26.1-1.el10_1.1.ppc64le.rpm gpsd-1:3.26.1-1.el10_1.1.src.rpm gpsd-debugsource-1:3.26.1-1.el10_1.1.ppc64le.rpm python3-gpsd-debuginfo-1:3.26.1-1.el10_1.1.ppc64le.rpm gpsd-clients-1:3.26.1-1.el10_1.1.ppc64le.rpm

Rocky Linux 10 x86_64 - AppStream

gpsd-1:3.26.1-1.el10_1.1.x86_64.rpm gpsd-debugsource-1:3.26.1-1.el10_1.1.x86_64.rpm gpsd-debuginfo-1:3.26.1-1.el10_1.1.x86_64.rpm gpsd-1:3.26.1-1.el10_1.1.src.rpm gpsd-clients-1:3.26.1-1.el10_1.1.x86_64.rpm python3-gpsd-1:3.26.1-1.el10_1.1.x86_64.rpm python3-gpsd-debuginfo-1:3.26.1-1.el10_1.1.x86_64.rpm gpsd-clients-debuginfo-1:3.26.1-1.el10_1.1.x86_64.rpm