| Package | dcmtk |
|---|---|
| Version | 3.6.1~20160216-4.1+deb9u1 (stretch), 3.6.4-2.1+deb10u2 (buster) |
| Related CVEs | CVE-2024-47796 CVE-2024-52333 |
Two cases of improper array index validation have been fixed in DCMTK, a collection of libraries and applications implementing large parts the DICOM standard for medical images.
Additionally, a regression introduced in the previous update has been fixed.
For Debian 10 buster, these problems have been fixed in version 3.6.4-2.1+deb10u2.
For Debian 9 stretch, these problems have been fixed in version 3.6.1~20160216-4.1+deb9u1.
We recommend that you upgrade your dcmtk packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.