PyPI/gdal — 9 CVEs

CRITICAL9.8CVE-2019-17545gdal - security update

from 0, < 148115fcc40f1651a5d15fa34c9a8c528e7147bb | from 0, < 3.0.2

HIGH7.8CVE-2019-25050netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (called from nc4_get_att_tc and nc_get_att_text) and in…

from 0, < 767e3a56144f676ca738ef8f700e0e56035bd05a, < 27b9bf644bcf1208f7d6594bdd104cc8a8bb0646 | >= 2.4.2, < 3.1.0

HIGH7.4In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow.

>= 3.1.0, < 3.13.1

MEDIUM5.5Buffer Overflow vulnerability in gdal 3.10.2 allows a local attacker to cause a denial of service via the OGRSpatialReference::Release func…

from 0, <= 3.10.2-NA

MEDIUM5.5gdal - security update

from 0, < 1ca6a3e5168c200763fa46d8aa7e698d0b757e7e | >= 3.3.0, < 3.4.1

MEDIUM5.3OSGeo gdal has a heap-based buffer overflow

from 0, < 3.13.0RC1

MEDIUM5.3OSGeo GDAL vulnerable to heap-based buffer overflow

from 0, < 3.13.0

LOW3.3OSGeo GDAL vulnerable to out-of-bounds read

from 0, < 3.13.0

pkg:PyPI/gdal

✅ Check your installed version

All known vulnerabilities