Описание
Security update for gdcm
This update for gdcm fixes the following issues:
- CVE-2024-22373: Fixed out-of-bounds write vulnerability in JPEG2000Codec::DecodeByStreamsCommon (boo#1223398).
Список пакетов
SUSE Package Hub 15 SP5
gdcm-3.0.24-bp155.2.4.1
gdcm-applications-3.0.24-bp155.2.4.1
gdcm-devel-3.0.24-bp155.2.4.1
gdcm-examples-3.0.24-bp155.2.4.1
libgdcm3_0-3.0.24-bp155.2.4.1
libsocketxx1_2-3.0.24-bp155.2.4.1
python3-gdcm-3.0.24-bp155.2.4.1
openSUSE Leap 15.5
gdcm-3.0.24-bp155.2.4.1
gdcm-applications-3.0.24-bp155.2.4.1
gdcm-devel-3.0.24-bp155.2.4.1
gdcm-examples-3.0.24-bp155.2.4.1
libgdcm3_0-3.0.24-bp155.2.4.1
libsocketxx1_2-3.0.24-bp155.2.4.1
python3-gdcm-3.0.24-bp155.2.4.1
Ссылки
- E-Mail link for openSUSE-SU-2024:0167-1
- SUSE Security Ratings
- SUSE Bug 1223398
- SUSE CVE CVE-2024-22373 page
Описание
An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.
Затронутые продукты
SUSE Package Hub 15 SP5:gdcm-3.0.24-bp155.2.4.1
SUSE Package Hub 15 SP5:gdcm-applications-3.0.24-bp155.2.4.1
SUSE Package Hub 15 SP5:gdcm-devel-3.0.24-bp155.2.4.1
SUSE Package Hub 15 SP5:gdcm-examples-3.0.24-bp155.2.4.1
Ссылки
- CVE-2024-22373
- SUSE Bug 1223398