GNUstep Base library: Denial of service

GNUstep Base library: Denial of service A vulnerability in GNUstep Base library could lead to Denial of Service. gnustep-base 2014-12-13 2014-12-13 508370 remote 1.24.6-r1 1.24.6-r1

GNUstep Base library is a free software package implementing the API of the OpenStep Foundation Kit (tm), including later additions.

GNUstep Base library does not properly handle the file descriptor for logging, when run as a daemon.

A remote attacker could send a specially crafted request, possibly resulting in a Denial of Service condition.

There is no known workaround at this time.

All GNUstep Base library users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose
      ">=gnustep-base/gnustep-base-1.24.6-r1"

CVE-2014-2980 keytoaster ackle