VYPR

rpm package

opensuse/dcmtk&distro=openSUSE Leap 15.6

pkg:rpm/opensuse/dcmtk&distro=openSUSE%20Leap%2015.6

Vulnerabilities (8)

  • CVE-2025-25475Feb 18, 2025
    affected < 3.6.9-bp156.4.6.1fixed 3.6.9-bp156.4.6.1

    A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

  • CVE-2025-25474Feb 18, 2025
    affected < 3.6.9-bp156.4.6.1fixed 3.6.9-bp156.4.6.1

    DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.

  • CVE-2025-25472Feb 18, 2025
    affected < 3.6.9-bp156.4.6.1fixed 3.6.9-bp156.4.6.1

    A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.

  • CVE-2024-52333Jan 13, 2025
    affected < 3.6.9-bp156.4.3.1fixed 3.6.9-bp156.4.3.1

    An improper array index validation vulnerability exists in the determineMinMax functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2024-47796Jan 13, 2025
    affected < 3.6.9-bp156.4.3.1fixed 3.6.9-bp156.4.3.1

    An improper array index validation vulnerability exists in the nowindow functionality of OFFIS DCMTK 3.6.8. A specially crafted DICOM file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2024-27628Jun 28, 2024
    affected < 3.6.9-bp156.4.3.1fixed 3.6.9-bp156.4.3.1

    Buffer Overflow vulnerability in DCMTK v.3.6.8 allows an attacker to execute arbitrary code via the EctEnhancedCT method component.

  • CVE-2024-34509May 5, 2024
    affected < 3.6.9-bp156.4.3.1fixed 3.6.9-bp156.4.3.1

    dcmdata in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.

  • CVE-2024-34508May 5, 2024
    affected < 3.6.9-bp156.4.3.1fixed 3.6.9-bp156.4.3.1

    dcmnet in DCMTK before 3.6.9 has a segmentation fault via an invalid DIMSE message.