1223324 – (CVE-2024-28130) VUL-0: CVE-2024-28130: dcmtk: incorrect type conversion in the DVPSSoftcopyVOI_PList:createFromImage functionality of OFFIS DCMTK

Bug 1223324 (CVE-2024-28130) - VUL-0: CVE-2024-28130: dcmtk: incorrect type conversion in the DVPSSoftcopyVOI_PList:createFromImage functionality of OFFIS DCMTK

Summary: VUL-0: CVE-2024-28130: dcmtk: incorrect type conversion in the DVPSSoftcopyVO...

Status:	NEW

Alias:	CVE-2024-28130

Product:	openSUSE Distribution
Classification:	openSUSE
Component:	KDE Applications (show other bugs)
Version:	Leap 15.6
Hardware:	Other Other

Priority:	P3 - Medium Severity: Major (vote)
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/402934/
Whiteboard:	CVSSv3.1:SUSE:CVE-2024-28130:7.5:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-04-23 18:31 UTC by SMASH SMASH
Modified:	2024-04-25 22:20 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description SMASH SMASH 2024-04-23 18:31:15 UTC

An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-28130
https://www.cve.org/CVERecord?id=CVE-2024-28130
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1957

Comment 1 Camila Camargo de Matos 2024-04-23 18:38:14 UTC

Possible fix: https://git.dcmtk.org/?p=dcmtk.git;a=commit;h=601b227eecaab33a3a3a11dc256d84b1a62f63af

Comment 3 OBSbugzilla Bot 2024-04-24 08:55:05 UTC

This is an autogenerated message for OBS integration:
This bug (1223324) was mentioned in
https://build.opensuse.org/request/show/1169993 Backports:SLE-15-SP6 / dcmtk
https://build.opensuse.org/request/show/1169994 Backports:SLE-15-SP5 / dcmtk
https://build.opensuse.org/request/show/1169995 Factory / dcmtk

Comment 4 Marcus Meissner 2024-04-25 19:04:56 UTC

openSUSE-SU-2024:0113-1: An update that solves one vulnerability and has one errata is now available.

Category: security (important)
Bug References: 1220809,1223324
CVE References: CVE-2024-28130
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP5 (src):    dcmtk-3.6.8-bp155.3.3.1

Comment 5 Christophe Marin 2024-04-25 22:20:22 UTC

Done, reassign to secteam