[Debian-med-packaging] gdcm_3.0.24-8_source.changes ACCEPTED into unstable
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Sun Dec 21 13:19:04 GMT 2025
Thank you for your contribution to Debian.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 20 Dec 2025 14:51:00 -0300
Source: gdcm
Architecture: source
Version: 3.0.24-8
Distribution: unstable
Urgency: medium
Maintainer: Debian Med Packaging Team <debian-med-packaging at lists.alioth.debian.org>
Changed-By: Emmanuel Arias <eamanu at debian.org>
Closes: 1122862
Changes:
gdcm (3.0.24-8) unstable; urgency=medium
.
* Team upload.
* CVE-2025-11266.patch: Avoid out-of-bounds vulnerability. The issue
was triggered during parsing of a malformed DICOM file containing
encapsulated PixelData fragments. This vulnerability leads to a
segmentation fault caused by an out-of-bounds memory access due to
unsigned integer underflow in buffer indexing (Closes: #1122862).
Checksums-Sha1:
ac80b7fa3f20f857e0ed4b9cdbe4f47adaa247b8 3223 gdcm_3.0.24-8.dsc
cb5a6e875508a0d2b910d8030ce103fdaecc0949 282500 gdcm_3.0.24-8.debian.tar.xz
66db1cc57f202ae86c240f2e2e462d2b0685ee82 33017 gdcm_3.0.24-8_amd64.buildinfo
Checksums-Sha256:
d2138ee16d958978e26eab295c788ea4368974f9f312b711ce43298dc59a8e82 3223 gdcm_3.0.24-8.dsc
93a5b0960215a3c4c19c723a0757f6c93bdcdb5939ae062181e24dbaf902b31c 282500 gdcm_3.0.24-8.debian.tar.xz
44092c675aed3d924aa0790daf8c39016bc213daf1df3e83f09c79ec70212a5b 33017 gdcm_3.0.24-8_amd64.buildinfo
Files:
ee11a6417f5cd16e788e0e22567ddacd 3223 libs optional gdcm_3.0.24-8.dsc
3ba8db0e4757b3de3a0b47106746f2b5 282500 libs optional gdcm_3.0.24-8.debian.tar.xz
85be623659c5ba6c6995205044da9449 33017 libs optional gdcm_3.0.24-8_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=7pOF
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/debian-med-packaging/attachments/20251221/df9161b0/attachment.sig>
More information about the Debian-med-packaging
mailing list