Senselessly Tooted Disinformation (2024-04-29 07:07:56)

Series of DICOM parser vulnerabilities disclosed by @TalosSecurity :

CVE-2024-22373 - Grassroot DICOM JPEG2000Codec::DecodeByStreamsCommon out-of-bounds write vulnerability

CVE-2024-22391 - Mathieu Malaterre Grassroot DICOM LookupTable::SetLUT out-of-bounds write vulnerability

CVE-2024-25569 - Grassroot DICOM RAWCodec::DecodeBytes out-of-bounds read vulnerability

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1935
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1924
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1944

Post from 2024-04-29 07:07:56