Invia #673134: DCMTK GitHub Repository DCMTK 3.6.5 NULL Pointer Dereferenceinformazioni

TitoloDCMTK GitHub Repository DCMTK 3.6.5 NULL Pointer Dereference
DescrizioneA null pointer dereference vulnerability exists in DCMTK (dcmqrscp) ≤ 3.6.5+DEV.When parsing a malformed configuration file lacking proper `HostTable BEGIN/END` or `AETable` structure, the function `DcmQueryRetrieveConfig::readPeerList()` dereferences a null `HostEntries` pointer, leading to a segmentation fault. The issue causes a denial of service and can be triggered using a crafted configuration file and replay input.
Fonte⚠️ https://shimo.im/docs/e1Azd4dDQXUgOGqW/
Utente
 zh_vul (UID 91488)
Sottomissione11/10/2025 05:24 (8 mesi fa)
Moderazione19/10/2025 12:28 (8 days later)
StatoAccettato
Voce VulDB329029 [DCMTK fino a 3.6.7 dcmqrscp /dcmqrcnf.cc readPeerList negazione del servizio]
Punti20

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!