12 matches found
Astra Linux - уязвимость в dcmtk
DCMTK through 3.6.6 does not handle memory free properly. The object in the program is free but its address is still used in other locations. Sending specific requests to the dcmqrdb program will incur a double free. An attacker can use it to launch a DoS attack...
EUVD-2021-28701
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-41688
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DCMTK through 3.6.6 does not handle memory free properly. The object in the program is free but its address is still used in other locations. Sending specific...
Linux Distros Unpatched Vulnerability : CVE-2021-41687
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsing data, but does not free it when error in parsing. Sending...
Linux Distros Unpatched Vulnerability : CVE-2021-41689
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - DCMTK through 3.6.6 does not handle string copy properly. Sending specific requests to the dcmqrdb program, it would query its database and copy the result even...
SUSE CVE-2021-41690
DCMTK through 3.6.6 does not handle memory free properly. The malloced memory for storing all file information are recorded in a global variable LST and are not freed properly. Sending specific requests to the dcmqrdb program can incur a memory leak. An attacker can use it to launch a DoS attack...
DEBIAN-CVE-2021-41689
DCMTK through 3.6.6 does not handle string copy properly. Sending specific requests to the dcmqrdb program, it would query its database and copy the result even if the result is null, which can incur a head-based overflow. An attacker can use it to launch a DoS attack...
DEBIAN-CVE-2021-41687
DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsing data, but does not free it when error in parsing. Sending specific requests to the dcmqrdb program incur the memory leak. An attacker can use it to launch a DoS attack...
DCMTK 安全漏洞
DCMTK is DCMTK open source a collection of libraries and applications that implement most of the DICOM standards. Software for inspecting, building and converting DICOM image files, processing offline media, sending and receiving images over a network connection, as well as demo image storage and...
PT-2021-23375 · Dcmtk +5 · Dcmtk +5
Name of the Vulnerable Software and Affected Versions: DCMTK versions 3.6.6 and earlier Description: The issue is related to improper string copy handling in DCMTK. By sending specific requests to the dcmqrdb program, an attacker can cause the program to query its database and copy the result, ev...
PT-2021-23374 · Dcmtk +5 · Dcmtk +5
Name of the Vulnerable Software and Affected Versions: DCMTK versions prior to 3.6.7 Description: The issue is related to improper memory handling, where an object's memory is freed but its address is still used elsewhere in the program. This can lead to a double free condition when specific...
PT-2021-23377 · Dcmtk +5 · Dcmtk +5
Name of the Vulnerable Software and Affected Versions: DCMTK versions 3.6.6 and earlier Description: The issue is related to improper memory handling in the DCMTK library, specifically with the global variable LST, which records allocated memory for storing file information but does not free it...