VYPR

apk package

chainguard/py3.13-gdal-3.8

pkg:apk/chainguard/py3.13-gdal-3.8

Vulnerabilities (1)

  • CVE-2026-8087MedMay 7, 2026
    affected < 3.8.5-r16fixed 3.8.5-r16

    A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. Impacted is the function GDnentries of the file frmts/hdf4/hdf-eos/GDapi.c. Performing a manipulation of the argument DataFieldName results in heap-based buffer overflow. The attack must be initiated from a loca