| عنوان | DCMTK GitHub Repository DCMTK 3.6.5 NULL Pointer Dereference |
|---|
| الوصف | A null pointer dereference vulnerability exists in DCMTK (dcmqrscp) ≤ 3.6.5+DEV.When parsing a malformed configuration file lacking proper `HostTable BEGIN/END` or `AETable` structure, the function `DcmQueryRetrieveConfig::readPeerList()` dereferences a null `HostEntries` pointer, leading to a segmentation fault. The issue causes a denial of service and can be triggered using a crafted configuration file and replay input. |
|---|
| المصدر | ⚠️ https://shimo.im/docs/e1Azd4dDQXUgOGqW/ |
|---|
| المستخدم | zh_vul (UID 91488) |
|---|
| ارسال | 11/10/2025 05:24 AM (8 أشهر منذ) |
|---|
| الاعتدال | 19/10/2025 12:28 PM (8 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 329029 [DCMTK حتى 3.6.7 dcmqrscp /dcmqrcnf.cc readPeerList الحرمان من الخدمة] |
|---|
| النقاط | 20 |
|---|