Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Mageia 9: 2024-0251 Critical: DCMTK Segmentation Faults and Memory Issues

mageia
Calendar Grey July 3, 2024
Dist Mageia Esm H88
Explore the new Mageia security bulletin for dcmtk which tackles critical segmentation violations and memory concerns.
Multiple vulnerabilities have benn fixed in DCMTK, a collection of libraries and applications implementing large parts the DICOM standard for medical images

Summary

Multiple vulnerabilities have benn fixed in DCMTK, a collection of libraries and applications implementing large parts the DICOM standard for medical images. CVE-2021-41687 Incorrect freeing of memory CVE-2021-41688 Incorrect freeing of memory CVE-2021-41689 NULL pointer dereference CVE-2021-41690 Incorrect freeing of memory CVE-2022-2121 NULL pointer dereference CVE-2022-43272 Memory leak in single process mode CVE-2024-28130 Segmentation faults due to incorrect typecast CVE-2024-34508 Segmentation fault via invalid DIMSE message CVE-2024-34509 Segmentation fault via invalid DIMSE message

References

- https://bugs.mageia.org/show_bug.cgi?id=33350

- https://lists.debian.org/debian-lts-announce/2024/06/msg00022.html

- https://www.cve.org/CVERecord?id=CVE-2024-28130

- https://www.cve.org/CVERecord?id=CVE-2024-34508

- https://www.cve.org/CVERecord?id=CVE-2024-34509

Topics%20covered

Topics Covered

security advisory critical memory issue segmentation fault CVE Mageia DICOM

Resolution

SRPMS

- 9/core/dcmtk-3.6.7-4.1.mga9

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 03 Jul 2024
URL: https://advisories.mageia.org/MGASA-2024-0251.html
Type: security
CVE: CVE-2024-28130, CVE-2024-34508, CVE-2024-34509

Topics%20covered

Topics Covered

security advisory critical memory issue segmentation fault CVE Mageia DICOM

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here