CVE-2013-2038

Name of the Vulnerable Software and Affected Versions gpsd versions prior to 3.9

Description The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code via a GPS packet with a malformed $GPGGA interpreted sentence. This sentence lacks certain fields and a terminator.

Recommendations For versions prior to 3.9, update to version 3.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the NMEA0183 driver to minimize the risk of exploitation.