DCMTK memory leak vulnerability

DCMTK is a collection of libraries and applications from DCMTK Open Source that implement most DICOM standards. Software for inspecting, building and converting DICOM image files, handling offline media, sending and receiving images over a network connection, and demo image storage and worklist servers. DCMTK 3.6.6 and earlier versions contain a memory leak vulnerability that stems from a program’s failure to properly free memory. An attacker could exploit the vulnerability to cause a memory leak by sending a specific request to the dcmqrdb program.