-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 17 Jan 2026 17:51:45 +0100
Source: gpsd
Binary: gpsd gpsd-clients gpsd-clients-dbgsym gpsd-dbgsym gpsd-tools gpsd-tools-dbgsym libgps-dev libgps30t64 libgps30t64-dbgsym libqgpsmm-dev libqgpsmm30t64 libqgpsmm30t64-dbgsym python3-gps python3-gps-dbgsym
Architecture: ppc64el
Version: 3.25-5+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-osuosl-01) <buildd_ppc64el-ppc64el-osuosl-01@buildd.debian.org>
Changed-By: Bastien Roucariès <rouca@debian.org>
Description:
 gpsd       - Global Positioning System - daemon
 gpsd-clients - Global Positioning System - clients
 gpsd-tools - Global Positioning System - tools
 libgps-dev - Global Positioning System - development files
 libgps30t64 - Global Positioning System - library
 libqgpsmm-dev - Global Positioning System - Qt wrapper for libgps (development)
 libqgpsmm30t64 - Global Positioning System - Qt wrapper for libgps
 python3-gps - Global Positioning System - Python 3 libraries
Closes: 1124799 1124800
Changes:
 gpsd (3.25-5+deb13u1) trixie; urgency=medium
 .
   * Non-Maintainer Upload by LTS team
   * Add salsa CI for trixie
   * Fix CVE-2025-67268 (Closes: #1124800).
     gpsd contains a heap-based out-of-bounds write
     vulnerability in the drivers/driver_nmea2000.c file.
     The hnd_129540 function, which handles NMEA2000 PGN 129540
     (GNSS Satellites in View) packets, fails to validate the
     user-supplied satellite count against the size of the skyview
     array (184 elements). This allows an attacker to write beyond
     the bounds of the array by providing a satellite count up
     to 255, leading to memory corruption, Denial of Service (DoS),
     and potentially arbitrary code execution.
   * Fix CVE-2025-67269 (Closes: #1124799).
     An integer underflow vulnerability exists in the `nextstate()`
     function in `gpsd/packet.c`.
     When parsing a NAVCOM packet, the payload length is calculated
     using `lexer->length = (size_t)c - 4` without checking if
     the input byte `c` is less than 4. This results in an unsigned
     integer underflow, setting `lexer->length` to a very large value
     (near `SIZE_MAX`). The parser then enters a loop attempting to
     consume this massive number of bytes, causing 100% CPU utilization
     and a Denial of Service (DoS) condition.
Checksums-Sha1:
 bd29d327e8a0652b6d6215c60bdad7e0f8e78ad3 1992648 gpsd-clients-dbgsym_3.25-5+deb13u1_ppc64el.deb
 cf28d9efa814e9b1fea2327a4bbefbc02ae863ea 517632 gpsd-clients_3.25-5+deb13u1_ppc64el.deb
 bc0ca758d28c259034454c41ec7999d9a57b7bec 2351584 gpsd-dbgsym_3.25-5+deb13u1_ppc64el.deb
 c59348f8d36973bdc6f9991a1231893ea2e9efe5 1612424 gpsd-tools-dbgsym_3.25-5+deb13u1_ppc64el.deb
 bc44941816b832014e39219c6958f32a72649fa3 356620 gpsd-tools_3.25-5+deb13u1_ppc64el.deb
 b95d639099f98ff75c5fce740584719786365ed2 20694 gpsd_3.25-5+deb13u1_ppc64el-buildd.buildinfo
 fcb65b9b8ae79763c42574d2fd356fa42b5362ea 436324 gpsd_3.25-5+deb13u1_ppc64el.deb
 ff74ae3a5455526cd7fe90587ccf8c4eeb06c147 152948 libgps-dev_3.25-5+deb13u1_ppc64el.deb
 f6af8296b12cacbc29fab701040341eca8fcf71b 174008 libgps30t64-dbgsym_3.25-5+deb13u1_ppc64el.deb
 b3121e56f7a043e096313c359473d1b9f5c6ebea 91952 libgps30t64_3.25-5+deb13u1_ppc64el.deb
 21944af3b523227f4b06652812f7c554816f49f0 34176 libqgpsmm-dev_3.25-5+deb13u1_ppc64el.deb
 ff2973586c33fae23174426ae2aa0f0dd5d59815 399964 libqgpsmm30t64-dbgsym_3.25-5+deb13u1_ppc64el.deb
 41af1202520d92610b5cd78139292e211780275f 93952 libqgpsmm30t64_3.25-5+deb13u1_ppc64el.deb
 21fa0e425fa7f3ed6267fcf4e8e2402658528a1d 64724 python3-gps-dbgsym_3.25-5+deb13u1_ppc64el.deb
 93b3b3ca8a553a1d80d44c1927a27678d63ef4bb 152932 python3-gps_3.25-5+deb13u1_ppc64el.deb
Checksums-Sha256:
 509d14dd26ac8ad5d547b00b99e230ca97750285344482dbdd6bc937b22a6893 1992648 gpsd-clients-dbgsym_3.25-5+deb13u1_ppc64el.deb
 3202e6de84a1aaec3192d617ed4e79b794db3b1a8544e1d671e776ce525c1999 517632 gpsd-clients_3.25-5+deb13u1_ppc64el.deb
 8977d09c44d89cb548a2797843e1792fa29e5c704742f0b6b3663400d57aa599 2351584 gpsd-dbgsym_3.25-5+deb13u1_ppc64el.deb
 81347952d60c1c3b72b786eb59a7998ee602be908de3fce914e922a3544162da 1612424 gpsd-tools-dbgsym_3.25-5+deb13u1_ppc64el.deb
 88e2394977abeecfa96cba83ec43bc85f9bada68a7765ac660b782c07b0aafb2 356620 gpsd-tools_3.25-5+deb13u1_ppc64el.deb
 c1ffccf849a8e6156c80d2a50e809f4935ffe80e47f9e8e67a23509b56c3e50d 20694 gpsd_3.25-5+deb13u1_ppc64el-buildd.buildinfo
 aeed2e3b25015ec4fa8d509717f5b8d8101e230ae905d119fece5847d81b132d 436324 gpsd_3.25-5+deb13u1_ppc64el.deb
 8e6aedaeabb782ecd23f46659038040e4bba7742dee16cd2137a9b363e00486a 152948 libgps-dev_3.25-5+deb13u1_ppc64el.deb
 8096b5fd7769f1c8360caf83f1b1bdd306eb3638e528443b63ab611fa0a9b627 174008 libgps30t64-dbgsym_3.25-5+deb13u1_ppc64el.deb
 9fcbaefe4f0106139a865144665fb5dad12c350fde2ea27964e086d9757630c1 91952 libgps30t64_3.25-5+deb13u1_ppc64el.deb
 208af251344a21921d65c0c2073a372cffdf049d42307781bd035a7e4c61ad47 34176 libqgpsmm-dev_3.25-5+deb13u1_ppc64el.deb
 8c8f42a54c80e976c2eb12032afad6f475561533869834b0b5dd3bfc64237742 399964 libqgpsmm30t64-dbgsym_3.25-5+deb13u1_ppc64el.deb
 7fa77e5be89b1146edeba379e4768693ae567a1457b2c8e9c4c2c0f16883597f 93952 libqgpsmm30t64_3.25-5+deb13u1_ppc64el.deb
 74127d8f12d08c8835df7bf0c7f75e702c4d67b64a714ad911e4ec82c758106c 64724 python3-gps-dbgsym_3.25-5+deb13u1_ppc64el.deb
 8df13c3ccbc39d40d4284364b952faf2e827a1a1994d0ff44cf8eb715bb0ce01 152932 python3-gps_3.25-5+deb13u1_ppc64el.deb
Files:
 8caec7f538e41ba569f2929f93ec439a 1992648 debug optional gpsd-clients-dbgsym_3.25-5+deb13u1_ppc64el.deb
 c71d38ffeb154659a27ff61ea2608079 517632 misc optional gpsd-clients_3.25-5+deb13u1_ppc64el.deb
 5a5b20df93498542a77d507b7d3c82ce 2351584 debug optional gpsd-dbgsym_3.25-5+deb13u1_ppc64el.deb
 5fc67d9392cd7bd4fac7ce98fd3ff481 1612424 debug optional gpsd-tools-dbgsym_3.25-5+deb13u1_ppc64el.deb
 b9e408e34744d897ff498bbd9a8173e9 356620 misc optional gpsd-tools_3.25-5+deb13u1_ppc64el.deb
 f04b022d2423e2d87f988bdbbef1eb15 20694 misc optional gpsd_3.25-5+deb13u1_ppc64el-buildd.buildinfo
 b2e60dfb3197be36fc5e96127bb7a246 436324 misc optional gpsd_3.25-5+deb13u1_ppc64el.deb
 30b3481efb481f70861e8d886fe4ea79 152948 libdevel optional libgps-dev_3.25-5+deb13u1_ppc64el.deb
 6ced4b72e64d53746b6b5e1e77bbe03b 174008 debug optional libgps30t64-dbgsym_3.25-5+deb13u1_ppc64el.deb
 7838674f4b3960289d52b04511c2725b 91952 libs optional libgps30t64_3.25-5+deb13u1_ppc64el.deb
 e06ac7c97d21ab06e6a6056b027f3ea6 34176 libdevel optional libqgpsmm-dev_3.25-5+deb13u1_ppc64el.deb
 99c56dc13ce98c8ea4b86746a8374ca6 399964 debug optional libqgpsmm30t64-dbgsym_3.25-5+deb13u1_ppc64el.deb
 96faadf4001a9644e6996a4dd6933926 93952 libs optional libqgpsmm30t64_3.25-5+deb13u1_ppc64el.deb
 60e32da64c42c5a973885bf66e6ccfa4 64724 debug optional python3-gps-dbgsym_3.25-5+deb13u1_ppc64el.deb
 00fa6e379c725f8928dca12ea6b35edf 152932 python optional python3-gps_3.25-5+deb13u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=nwcw
-----END PGP SIGNATURE-----