Debian Gnustep-Base vulnerabilities
3 known vulnerabilities affecting debian/gnustep-base.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2010-1457P4MEDIUMCVSS 4.9PoCfixed in gnustep-base 1.19.3-2 (bookworm)2010
CVE-2010-1457 [MEDIUM] CVE-2010-1457: gnustep-base - Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 allows local users to rea...
Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 allows local users to read arbitrary files via a (1) -c or (2) -a option, which prints file contents in an error message.
Scope: local
bookworm: resolved (fixed in 1.19.3-2)
bullseye: resolved (fixed in 1.19.3-2)
forky: resolved (fixed in 1.19.3-2)
sid: resolved (fixed in 1.19.3-2)
trixie: resolved (fixed i
debian
CVE-2010-1620P4HIGHCVSS 7.2fixed in gnustep-base 1.19.3-2 (bookworm)2010
CVE-2010-1620 [HIGH] CVE-2010-1620: gnustep-base - Integer overflow in the load_iface function in Tools/gdomap.c in gdomap in GNUst...
Integer overflow in the load_iface function in Tools/gdomap.c in gdomap in GNUstep Base before 1.20.0 might allow context-dependent attackers to execute arbitrary code via a (1) file or (2) socket that provides configuration data with many entries, leading to a heap-based buffer overflow.
Scope: local
bookworm: resolved (fixed in 1.19.3-2)
bullseye: resolved (fix
debian
CVE-2014-2980P4MEDIUMCVSS 4.3fixed in gnustep-base 1.24.6-1 (bookworm)2014
CVE-2014-2980 [MEDIUM] CVE-2014-2980: gnustep-base - Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when run in daemon ...
Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when run in daemon mode, does not properly handle the file descriptor for the logger, which allows remote attackers to cause a denial of service (abort) via an invalid request.
Scope: local
bookworm: resolved (fixed in 1.24.6-1)
bullseye: resolved (fixed in 1.24.6-1)
forky: resolved (fixed in 1.24.6-1
debian