VDB
KO
HIGH 7.8

PYSEC-2026-193

Details

In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry attribute in a crafted NetCDF file. This achieves arbitrary code execution on the server running GDAL. This is in frmts/netcdf/netcdfsg.cpp.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / gdal
Introduced in: 3.1.0 Fixed in: 3.13.1
Fix pip install --upgrade 'gdal>=3.13.1'

References