VYPR

PyPI package

gdal

pkg:pypi/gdal

Vulnerabilities (2)

  • CVE-2026-8088LowMay 7, 2026
    affected < 3.13.0fixed 3.13.0

    A weakness has been identified in OSGeo gdal up to 3.13.0dev-4. The affected element is the function GDfieldinfo of the file frmts/hdf4/hdf-eos/GDapi.c. Executing a manipulation can lead to out-of-bounds read. The attack needs to be launched locally. The exploit has been made ava

  • CVE-2026-8087MedMay 7, 2026
    affected < 3.13.0fixed 3.13.0

    A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. Impacted is the function GDnentries of the file frmts/hdf4/hdf-eos/GDapi.c. Performing a manipulation of the argument DataFieldName results in heap-based buffer overflow. The attack must be initiated from a loca