Debian Patches
Status for dcmtk/3.7.0+really3.7.0-6
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 01_dcmtk_3.6.0-1.patch | The original maintainer Jürgen Salk applied a set of patches to the original code. This file contains changes to C++ code |
Jürgen Salk <jsa@debian.org> | not-needed | |||
| 07_dont_export_all_executables.patch | Don't add executables to cmake exports CMake exports are used by other packages that compile and link against dcmtk. Because Debian moves some of these executables and also dosn't install the test executables, this import may fail leading to failure to configure the according package. |
Gert Wollny <gw.fossdev@gmail.com> | not-needed | debian | ||
| remove_version.patch | Remove version =================================================================== |
Mathieu Malaterre <malat@debian.org> | not-needed | debian | 2025-03-21 | |
| skip-bigendian-roundtrip-failure.patch | skip test failure on big endian systems. The issue is known upstream and supposed to be fixed in an upcoming version. |
Étienne Mollier <emollier@debian.org> | not-needed | debian upstream | 2026-02-17 | |
| hurd.patch | Added support for GNU Hurd in OFgetExecutablePath(). Thanks to Pino Toscano (GitHub user pinotree) for the pull request. This closes GitHub PR #137. |
Marco Eichelberg <eichelberg@offis.de> | no | 2026-01-30 | ||
| CVE-2026-5663.patch | Sanitize all strings passed to the exec options. Sanitize the text fields from incoming DICOM associations and DICOM objects (such as Study Instance UID, SOP Instance UID, Patient's Name) and the calling SCU's network presentation address by removing special characters that may be interpreted as shell escape characters when one of the execution options (e.g. --exec-on-reception) is in use. . Thanks to Machine Spirits UG (haftungsbeschränkt) for the bug report, detailed analysis and proof of concept. . This closes DCMTK issue #1194. |
Marco Eichelberg <eichelberg@offis.de> | yes | debian upstream | 2026-03-21 | |
| CVE-2026-10194.patch | Fixed remote heap buffer overflow in dcmqrscp. Thanks to 'elp3pinill0' for the bug report, detailed analysis, proof of concept and proposed fix. diff --git a/dcmqrdb/libsrc/dcmqrdbi.cc b/dcmqrdb/libsrc/dcmqrdbi.cc index c91116a1c..ee308abe1 100644 |
Marco Eichelberg <eichelberg@offis.de> | yes | debian upstream | 2026-05-04 | |
| CVE-2026-12805.patch | commit 1d4b3815c0987840a983160bfc671fef63a3105b Fixed buffer overflow in XMLNode::parseFile(). Fixed a heap buffer overflow that could occur in the XML parser when reading from a named pipe. Thanks to Cristhian Daniel Rivas Zúñiga and Sebastian Andres Muñoz Morera (Insituto Tecnológico de Costa Rica) for the bug report and fix. This closes DCMTK issue #1208. |
Marco Eichelberg <eichelberg@offis.de> | no | 2026-05-23 |
All known versions for source package 'dcmtk'
- 3.7.0+really3.7.0-6 (forky, sid)
- 3.6.9-5 (trixie)
- 3.6.7-9~deb12u3 (bookworm)