Описание
Security update for dcmtk
This update for dcmtk fixes the following issues:
- CVE-2025-25472: Fixed a denial of service via a crafted DCM file (boo#1237369).
- CVE-2025-25474: Fixed a denial of service via a crafted DICOM file (boo#1237365).
- CVE-2025-25475: Fixed a buffer overflow via the component /dcmimgle/diinpxt.h (boo#1237355).
Список пакетов
SUSE Package Hub 15 SP6
dcmtk-3.6.9-bp156.4.6.1
dcmtk-devel-3.6.9-bp156.4.6.1
libdcmtk19-3.6.9-bp156.4.6.1
openSUSE Leap 15.6
dcmtk-3.6.9-bp156.4.6.1
dcmtk-devel-3.6.9-bp156.4.6.1
libdcmtk19-3.6.9-bp156.4.6.1
Ссылки
- E-Mail link for openSUSE-SU-2025:0068-1
- SUSE Security Ratings
- SUSE Bug 1237355
- SUSE Bug 1237365
- SUSE Bug 1237369
- SUSE CVE CVE-2025-25472 page
- SUSE CVE CVE-2025-25474 page
- SUSE CVE CVE-2025-25475 page
Описание
A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.
Затронутые продукты
SUSE Package Hub 15 SP6:dcmtk-3.6.9-bp156.4.6.1
SUSE Package Hub 15 SP6:dcmtk-devel-3.6.9-bp156.4.6.1
SUSE Package Hub 15 SP6:libdcmtk19-3.6.9-bp156.4.6.1
openSUSE Leap 15.6:dcmtk-3.6.9-bp156.4.6.1
Ссылки
- CVE-2025-25472
- SUSE Bug 1237369
Описание
DCMTK v3.6.9+ DEV was discovered to contain a buffer overflow via the component /dcmimgle/diinpxt.h.
Затронутые продукты
SUSE Package Hub 15 SP6:dcmtk-3.6.9-bp156.4.6.1
SUSE Package Hub 15 SP6:dcmtk-devel-3.6.9-bp156.4.6.1
SUSE Package Hub 15 SP6:libdcmtk19-3.6.9-bp156.4.6.1
openSUSE Leap 15.6:dcmtk-3.6.9-bp156.4.6.1
Ссылки
- CVE-2025-25474
- SUSE Bug 1237365
Описание
A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.
Затронутые продукты
SUSE Package Hub 15 SP6:dcmtk-3.6.9-bp156.4.6.1
SUSE Package Hub 15 SP6:dcmtk-devel-3.6.9-bp156.4.6.1
SUSE Package Hub 15 SP6:libdcmtk19-3.6.9-bp156.4.6.1
openSUSE Leap 15.6:dcmtk-3.6.9-bp156.4.6.1
Ссылки
- CVE-2025-25475
- SUSE Bug 1237355