Which says:
Affected packages
=================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 gnustep-base/gnustep-base
< 1.24.6-r1 >= 1.24.6-r1
NIST's NVD:
which links to the following diff:
and to the bug on Savannah:
and to following email on seclists:
Sounds like it's been resolved for several months now. It's still worth bringing up for people who are using pre-1.24.6 GNUstep and depend on gdomap.