CVE-2026-49014
EUVD-2026-3203927.05.2026, 02:16
In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry attribute in a crafted NetCDF file. This achieves arbitrary code execution on the server running GDAL. This is in frmts/netcdf/netcdfsg.cpp.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| osgeo | gdal | 3.1.0 ≤ 𝑥 ≤ 3.13.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| gdal310 |
| ||
| gdal310-debuginfo |
| ||
| gdal310-debugsource |
| ||
| gdal310-devel |
| ||
| gdal310-java |
| ||
| gdal310-java-debuginfo |
| ||
| gdal310-javadoc |
| ||
| gdal310-libs |
| ||
| gdal310-libs-debuginfo |
| ||
| gdal310-python-tools |
| ||
| python3-gdal310 |
| ||
| python3-gdal310-debuginfo |
|
Common Weakness Enumeration