Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/gdcm@3.0.24-5
purl pkg:deb/debian/gdcm@3.0.24-5
Next non-vulnerable version 3.0.24-9
Latest non-vulnerable version 3.0.24-9
Risk 3.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-3fc5-33n7-pkeq
Aliases:
CVE-2025-11266
GDCM: Grassroots DICOM: Grassroots DICOM (GDCM): Denial of Service via malformed DICOM file parsing
3.0.24-9
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-6xue-7ryt-9fa3 An out-of-bounds read vulnerability exists in the RAWCodec::DecodeBytes functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to trigger this vulnerability. CVE-2024-25569
VCID-m1ah-vyz4-57dc A heap-based buffer overflow vulnerability exists in the LookupTable::SetLUT functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. CVE-2024-22391
VCID-sgsd-p8ts-r7gn An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality of Mathieu Malaterre Grassroot DICOM 3.0.23. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability. CVE-2024-22373

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:26:13.586186+00:00 Debian Importer Fixing VCID-m1ah-vyz4-57dc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:51:52.710336+00:00 Debian Importer Affected by VCID-3fc5-33n7-pkeq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:47:06.412474+00:00 Debian Importer Fixing VCID-sgsd-p8ts-r7gn https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T09:09:12.567735+00:00 Debian Importer Fixing VCID-6xue-7ryt-9fa3 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:16:09.402184+00:00 Debian Importer Fixing VCID-m1ah-vyz4-57dc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:49:49.527043+00:00 Debian Importer Affected by VCID-3fc5-33n7-pkeq https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:32:08.554094+00:00 Debian Importer Fixing VCID-sgsd-p8ts-r7gn https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:07:42.116619+00:00 Debian Importer Fixing VCID-6xue-7ryt-9fa3 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-08T20:09:23.416590+00:00 Debian Importer Fixing VCID-m1ah-vyz4-57dc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-08T19:52:33.910350+00:00 Debian Importer Affected by VCID-3fc5-33n7-pkeq https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T18:12:06.680395+00:00 Debian Importer Fixing VCID-sgsd-p8ts-r7gn https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T17:57:32.745516+00:00 Debian Importer Fixing VCID-6xue-7ryt-9fa3 https://security-tracker.debian.org/tracker/data/json 38.1.0