2 matches found
CVE-2026-5442
CVE-2026-5442 describes a heap buffer overflow in the DICOM image decoder caused by encoding dimension fields with VR UL instead of VR US, enabling abnormally large dimensions, which leads to an integer overflow in frame size calculation and out-of-bounds memory access during decoding. Affected c...
CVE-2026-5442 Heap Buffer Overflow in DICOM Image Decoder via VR UL Dimensions
A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation VR Unsigned Long UL, instead of the expected VR Unsigned Short US, which allows extremely large dimensions to be processed. This causes an integer overflow during frame...