gdcm -- multiple vulnerabilities

2015-12-23T00:00:00
ID E00D8B94-C88A-11E5-B5FE-002590263BF5
Type freebsd
Reporter FreeBSD
Modified 2015-12-23T00:00:00

Description

CENSUS S.A. reports:

GDCM versions 2.6.0 and 2.6.1 (and possibly previous versions) are prone to an integer overflow vulnerability which leads to a buffer overflow and potentially to remote code execution.

GDCM versions 2.6.0 and 2.6.1 (and possibly previous versions) are prone to an out-of-bounds read vulnerability due to missing checks.