CVE-2014-2980

N/A Unknown

Published: April 28, 2014 Modified: May 06, 2026

Description

Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when run in daemon mode, does not properly handle the file descriptor for the logger, which allows remote attackers to cause a denial of service (abort) via an invalid request.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://seclists.org/oss-sec/2014/q2/143

Source: cve@mitre.org

http://seclists.org/oss-sec/2014/q2/152

Source: cve@mitre.org

http://secunia.com/advisories/58104

Source: cve@mitre.org

Vendor Advisory

http://svn.gna.org/viewcvs/gnustep/libs/base/trunk/ChangeLog?r1=37756&r2=37755&pathrev=37756

Source: cve@mitre.org

http://svn.gna.org/viewcvs/gnustep/libs/base/trunk/Tools/gdomap.c?r1=37756&r2=37755&pathrev=37756

Source: cve@mitre.org

Exploit Patch

http://www.securityfocus.com/bid/66992

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/92688

Source: cve@mitre.org

https://savannah.gnu.org/bugs/?41751

Source: cve@mitre.org

http://seclists.org/oss-sec/2014/q2/143