-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:48:56 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: arm64 Version: 1.9.2+really1.9.1+dfsg-1+deb11u1 Distribution: bullseye-security Urgency: high Maintainer: arm Build Daemon (arm-arm-04) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.9.2+really1.9.1+dfsg-1+deb11u1) bullseye-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bullseye. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: 77ce29b6d5abd3bff36c42b87e83e3fa1b9aaf8f 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 699d00d6833b97f96b8e41b92fdeae5856cda7dd 14680060 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb dc2bf3332dde58aa3ecdd82670bec47c95030205 1565820 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 29fa1ac4bffbebdd0a1634e8cda714874be0c98a 35919820 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 9ad0a51ff52290e61ff93cc5b68df3597f5259dc 75080 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb dfa44230c27ae108586a34ee94beff09412be916 16979 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64-buildd.buildinfo d3cfbcd3ea3f8bee8f4aa3dce65fcc0d4f23a24e 1380180 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb Checksums-Sha256: b52cbb29eb44730ca01900bcf5e16726aa96d1331372395a4472b1c48b1eea65 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb cfeb060d096c05e3cd5f9a4e11ee37a10f7144eadecae3a891c3fc583323fdf1 14680060 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 2a1e0a6a78706e5587962cd32739b98a72f4d89ef4135a8168b61c78916d45da 1565820 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb a1d229e59900c28a8b3ec6408d1b59222086cb615c3511f63efed5e09a041165 35919820 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 4f5c6dfae5ebb2bdd929825634c72817384483a125ae1564e3c746702a16e884 75080 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 7461173a8f25e268080adce33117fab147f123548418de963a3d03ec063699d6 16979 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64-buildd.buildinfo 810b4e6333090b1cabe63cf64af879dd4bd7d0e1c58bfc8d28f47d7b3cba884d 1380180 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb Files: 52481fa0148f4135deee0239ae8924ea 104172 libdevel optional liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 01a3c7ff272156399d000ed9437c4399 14680060 debug optional liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 59fdc85539d7cedb2aa674e26f4519dc 1565820 libs optional liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 1e71548bc6423fec2227544f499c8ac3 35919820 debug optional orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb 7ff5f644183760706f4b3711f850ea00 75080 libdevel optional orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb ab8b56cbdba75ecd48e8d9873a956440 16979 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64-buildd.buildinfo b2d88f0c7cfea850573c5d0446588a39 1380180 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEmUDOxnfDwdc47jJKqoc2e3yvTA0FAmS6u4kACgkQqoc2e3yv TA1ZaRAAufnFTUirXeinq7DX8c/CQSIb2NdSpwn98HEqgk0D7cR0bVcvdMNI5XZ8 bccjMRyH6aHBGjTbvi7RM46fsBvwFnxAte9ngnBg/PVDrijU4lynh/Pdr1biGwB2 8Wmaah3QWFjQ76quh6F+fw9DM2kYUurLmbp1uDwmXeCipzVShKRo9MtuwJxUL+FY 3fT7nOTCg1drc29bxeK31CUdNCTpPVa5qgR6+kBf9gy/46uNoIuuMHM96JYXx8hi OQVY/pCDBTbFTbl256voeTmWNXWwXlDi1wh1m3lBXPJX8lPjgf0AlFRQ7Q6xqKcT UuzQhKPIPp23VxcB4bZEushDDefd+Q/j9yMpNN6rlvjySVZanGoIstn5HflIaS37 M7exB3fpiZWYn+AzhgOx8exG1R9xSskZLzZj/X2S5/u7WfdkQ25AJbK3t9l2hBkN QkLfC3/XmfhCsAsrwClXN76784HynwHGCatZE9dHl9fSZMXLl8r++6Qf9c5CRJii mmZXqMuFQBvS612QNmgib8d2fTLBtaJtbKsqJQqW8xPKB6H8CWUvnMXTrzUfrMz4 9i2cGDPl0HpgkuSiKbSktKmjAVfw/dgOHBGf2sN2+rwXrx4JIE2oEKTT07v1HIke 8sH0NENG/XtgSAAZugZ2t4fx7QdMxJ2p+gczfkzOBXAqEbgXdIo= =Bk56 -----END PGP SIGNATURE-----