CNNVD-202512-2311 Information

CNNVD ID

CNNVD-202512-2311

Related CVE

CVE-2025-11266

• CNNVD Published: 2025-12-12

Description (Chinese)

Grassroots DICOM是Mathieu Malaterre个人开发者的一个软件库。 Grassroots DICOM存在缓冲区错误漏洞，该漏洞源于解析畸形DICOM文件时存在越界写入，可能导致拒绝服务。

Description (English)

Grassroots DICOM is a software repository for Mathieu Malaterre’s personal developers. Grassroots DICOM had an error loophole in the buffer zone, resulting from the cross-border writing of the deformity DICOM document, which could lead to the denial of services.

Hazard Level

High

Vulnerability Type

缓冲区错误

Affected Vendor

个人开发者

Published

2025-12-12

Last Modified

2026-02-24

References

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2025/icsma-25-345-01.json https://github.com/malaterre/GDCM/releases/tag/v3.2.2 https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-345-01

Patch

https://github.com/malaterre/GDCM/releases