Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted dcmtk 3.6.5-1+deb11u5 (source) into oldoldstable-security
Date: Mon, 03 Nov 2025 21:50:25 +0000
Signed by: Markus Koschany <apo@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon,  3 Nov 2025 22:26:13 CET
Source: dcmtk
Architecture: source
Version: 3.6.5-1+deb11u5
Distribution: bullseye-security
Urgency: medium
Maintainer: Debian Med Packaging Team <debian-med-packaging@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Checksums-Sha1:
 40e5d35f8e64d95c8548e333a610de62cf687b07 2451 dcmtk_3.6.5-1+deb11u5.dsc
 491f7c206f1ed746634af3062b6b791519b13dab 6483626 dcmtk_3.6.5.orig.tar.gz
 a2c9a9abe1b08e2981e64fe89d57e19f6fee4542 57796 dcmtk_3.6.5-1+deb11u5.debian.tar.xz
 897b89fb8b5e5e0ce90142b16e1a2d3ed004c55c 11318 dcmtk_3.6.5-1+deb11u5_amd64.buildinfo
Checksums-Sha256:
 a7790975d347eb043aba47148d2338dbaa5cbcf9b11772daaa901998a61e707e 2451 dcmtk_3.6.5-1+deb11u5.dsc
 a05178665f21896dbb0974106dba1ad144975414abd760b4cf8f5cc979f9beb9 6483626 dcmtk_3.6.5.orig.tar.gz
 62768547b098309b6a34533cb57e594057ef585d5522da8ad6c7a320adb92c7b 57796 dcmtk_3.6.5-1+deb11u5.debian.tar.xz
 d87550c05fb8f3d6526a485d280d0efdc5cb2306bba06d6edc2dc5a6b71a1135 11318 dcmtk_3.6.5-1+deb11u5_amd64.buildinfo
Changes:
 dcmtk (3.6.5-1+deb11u5) bullseye-security; urgency=medium
 .
   * Non-maintainer upload by the LTS team.
   * Fix CVE-2025-9732:
     Processing of an invalid DICOM image with a Photometric
     Interpretation of "YBR_FULL" and a Planar Configuration of "1" where
     the number of pixels stored does not match the expected number of pixels.
     This may lead to memory corruption.
   * Fix CVE-2022-4981:
     Various issues in the dcmqrscp configuration file parser that could cause
     application crashes when reading a malformed configuration file, due to
     insufficient checks of the input data.
   * Fix CVE-2020-36855:
     stack-based overflow in the dcmqrscp config parser.
Files:
 398fb2607abe5dc72165f247af24e26a 2451 science optional dcmtk_3.6.5-1+deb11u5.dsc
 e19707f64ee5695c496b9c1e48e39d07 6483626 science optional dcmtk_3.6.5.orig.tar.gz
 ff7f0ff0e14f7034555ab66c65cdbbe7 57796 science optional dcmtk_3.6.5-1+deb11u5.debian.tar.xz
 aa100936976759438ce6fb5c15bd00e4 11318 science optional dcmtk_3.6.5-1+deb11u5_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmkJHxVfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD
RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp
YW4ub3JnAAoJENmtFLlRO1Hkzc8QAMlOf1DzP8r1Lpp7u9GDGMxA2FGuIWRYPhtB
8qGG2hlkat66b4OpjiQeXvhKEtUwuSUClDkwFCpAnYuTKPb9ubKgBdp+FAfHjPbr
R/2Pm+MsEZDod16knwYOGr0CWkMTpuU0uMeT1mdgdMzTvmVHjt1g5RUAjhFeQE3K
tY0+IdY9G4pJlIByOAFE2jVkXZCT9yLW9Km69CQ5loS5lbg9aklCv2oZt34+f3Gg
vjSrOclCesgmjKdsqNrJdv3/q/a4upYJDynpXqinbaRB1ZkUHXZ/5QP/tgjHdRjV
cvENtlci0YP0iNHIwjdgY+dCfjTN+wNEJdengCfxI+iFzJIb8OPg8yUYlPOWsG13
OOjq54LfOzRO4w9sR3WSqtdoBQY9P5gW3bmBAyarTfDQ67/FjPw0oDqDXIV+Tbuz
nfBx+HF/FgRUqGeMkzntjVVE0mCwBuZNo9lV2mIa4KBukpHJbKmtzzogAWqm4lST
CwjT0QknlFMryA8wJnP8P8NMa/KJ3Q4eiZf56y6qIh5iUlKIK7MlvzayV6uq5xqB
cKtkqTNiu6ZJ6mWw8OgWImPgL8Xwl3X7oiA8ZkUR69u5faxoN3BOaA/Ch1omBUkx
qjP1vyzl4wZyFfLqSqGfQmLYlbN/hbnZKch4+9KnSoZib1UC3LRcvKcL2cDFYCt+
OADo5aps
=RF3B
-----END PGP SIGNATURE-----
News for package dcmtk
