4 matches found
CVE-2026-3650
A flaw was found in the Grassroots DICOM library GDCM. This memory leak vulnerability occurs when the library processes maliciously crafted DICOM files containing non-standard value representation VR types in their file meta-information. A remote attacker can exploit this by providing such a file...
CVE-2026-3650
Grassroots DICOM library (GDCM) memory leak when parsing malformed DICOM files with non-standard VR types in file meta information. Root cause: improper memory handling leads to vast allocations and resource depletion, enabling a DoS via heap exhaustion from a single read. Impact: high availabili...
Denial Of Service (DoS)
synapse is vulnerable to denial of service. An attacker can send an invalid JSON data to Synapse which will relay the data to clients. This is possible as non-standard NaN, Infinity, and -Infinity JSON values are not sanitized and are passed on to the client which could crash or hang...
UBUNTU-CVE-2020-26890
Matrix Synapse before 1.20.0 erroneously permits non-standard NaN, Infinity, and -Infinity JSON values in fields of m.room.member events, allowing remote attackers to execute a denial of service attack against the federation and common Matrix clients. If such a malformed event is accepted into th...