Submit #705036: OFFIS DCMTK 3.6.9 Buffer Overflowinfo

TitleOFFIS DCMTK 3.6.9 Buffer Overflow
DescriptionAn issue was found where accessing an illegal odd-length text attribute causes the terminating null byte to be overwritten by a padding character. This results in strings lacking a null terminator, potentially allowing remote attackers to trigger memory corruption or crash the application via a specially crafted dataset.
Source⚠️ https://support.dcmtk.org/redmine/issues/1184
User
 KendrickZou (UID 93081)
Submission12/02/2025 13:03 (6 months ago)
Moderation12/12/2025 20:54 (10 days later)
StatusAccepted
VulDB entry336283 [OFFIS DCMTK up to 3.6.9 dcmdata dcbytstr.cc makeDicomByteString memory corruption]
Points18

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!