CVE-2025-25475

Опубликовано: 18 фев. 2025

Источник: debian

EPSS Низкий

Описание

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
dcmtk	fixed	3.6.9-4		package
dcmtk	fixed	3.6.7-9~deb12u3	bookworm	package

Примечания

Fixed by: https://git.dcmtk.org/?p=dcmtk.git;a=commit;h=bffa3e9116abb7038b432443f16b1bd390e80245

EPSS

Процентиль: 50%

0.00269

Низкий

Связанные уязвимости

CVE-2025-25475

CVSS3: 7.5

ubuntu

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

CVE-2025-25475

CVSS3: 6.5

redhat

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

CVE-2025-25475

CVSS3: 7.5

nvd

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

GHSA-rqvx-2c23-x225

CVSS3: 5.3

github

7 месяцев назад

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

openSUSE-SU-2025:0068-1

suse-cvrf

7 месяцев назад

Security update for dcmtk

EPSS

Процентиль: 50%

0.00269

Низкий