CVE-2013-6825

Published: 10 June 2014

(1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc and (6) dcmpsrcv.cc in dcmpstat/apps/, (7) dcmpstat/tests/msgserv.cc, and (8) dcmqrdb/apps/dcmqrscp.cc in DCMTK 3.6.1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by creating a large number of processes.

Notes

Author	Note
seth-arnold	Debian adds "NOTE: Not running with elevated privileges in Debian packaging"

Priority

Status

Package	Release	Status
dcmtk Launchpad, Ubuntu, Debian	artful	Ignored (end of life)
	bionic	Not vulnerable (code not present)
	cosmic	Ignored (end of life)
	disco	Ignored (end of life)
	eoan	Ignored (end of life)
	focal	Not vulnerable (code not present)
	groovy	Ignored (end of life)
	hirsute	Ignored (end of life)
	impish	Ignored (end of life)
	jammy	Not vulnerable (code not present)
	kinetic	Not vulnerable (code not present)
	lucid	Ignored (end of life)
	lunar	Ignored (end of life, was needed)
	mantic	Needed
	precise	Ignored (end of life)
	saucy	Ignored (end of life)
	trusty	Does not exist (trusty was needed)
	upstream	Needed
	utopic	Ignored (end of life)
	vivid	Ignored (end of life)
	wily	Ignored (end of life)
	xenial	Not vulnerable (code not present)
	yakkety	Ignored (end of life)
	zesty	Ignored (end of life)
	Patches: other: http://hmarco.org/bugs/patches/dcmtk-3.6.1-drop-privileges-fixed.patch

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›