Launchpad CVE tracker

CVE 2014-2980

Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when run in daemon mode, does not properly handle the file descriptor for the logger, which allows remote attackers to cause a denial of service (abort) via an invalid request.

Related bugs and status

CVE-2014-2980 (Candidate) is related to these bugs:

Bug #1277975: gnustep-base: FTBFS: Build fails with several test failures

Summary				In	Importance	Status
	1277975	gnustep-base: FTBFS: Build fails with several test failures		gnustep-base (Ubuntu)	High	Fix Released
	1277975	gnustep-base: FTBFS: Build fails with several test failures		gcc	Unknown	Unknown

Bug #1343945: Sync gnustep-base 1.24.6-2 (universe) from Debian unstable (main)

Summary				In	Importance	Status
	1343945	Sync gnustep-base 1.24.6-2 (universe) from Debian unstable (main)		gnustep-base (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2014-2980

References