-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:48:56 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: armel Version: 1.9.2+really1.9.1+dfsg-1+deb11u1 Distribution: bullseye-security Urgency: high Maintainer: arm Build Daemon (arm-arm-03) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.9.2+really1.9.1+dfsg-1+deb11u1) bullseye-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bullseye. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: 3041a28d0c0c1682133c31a0c161c1607e6fab6a 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 6d45d98973f1e1cd86b7169c5ec32cd262bcd47a 12736068 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb f31b2dc806f22062a6529c0e24781a22f625f244 1246632 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 7e8490444ecfa1b314e4c47120bc0ebb933e3208 32545536 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb da96b2f0e257071ea8b7a997be8d19e572da6a6c 75080 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb bf0cb3687bdfbf64a2b50dde02d43bea880a6a98 16867 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armel-buildd.buildinfo 8267e93b704ece74f0fc6534f5dd28ae76b84835 1300664 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb Checksums-Sha256: 39d09524016af69c8d641df6d9b49adec283a78389b90a15a1ce8e6b213b0cc4 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 8425678549c9a8b4bfcfe173459115161bff81ea97ede6f728a1597bd4a21f79 12736068 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 0821610edd3f3a7e4e3997a86f0cae6f85d08bba2e65899aa0f35de594b2ad43 1246632 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb ead62b4eb9e56826b81ba4eba56187164bafb6519bf9ea913d58fb227d6f8fd9 32545536 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 802e87742c44a1f1f2296425688471066959c2f03abc9e40000395531868ce03 75080 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 7f46e15acca17cb452c5275e1cee6a85720b065dc836e590fc0bd430b67d8e1a 16867 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armel-buildd.buildinfo a8413aa13c21b2e88dacefe60f40d249b5489de26aca91c3b6e33a8e15285b90 1300664 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb Files: fd027127573c4701f1094279a036213e 104172 libdevel optional liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 50e8d5b818dd0139300a589eb585a882 12736068 debug optional liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb f550409026450005879bb0b3c0aa74b3 1246632 libs optional liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 85c826ceac0dd6a717f2477fc15be76b 32545536 debug optional orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb 353d566645c5ee00c7f67782b266c898 75080 libdevel optional orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb d6063afcbd9ab3d7b328041c01c53c66 16867 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armel-buildd.buildinfo 6005d3a9812751053d928d9e28d24935 1300664 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEExwLooY4pOBEnRvQOhwvc65q7iiUFAmS6vksACgkQhwvc65q7 iiUYoQ/7BkBz1YKGKZirXTDwj5QagNrzceJxV2BMFFGtE9txzmGFd3cmPfZ/7gu8 /g2pM1WsXp9zccD/uyHvcYtbKhcifxUriEFiLIvKHSfIT06t7K0EQxZ2Hw34CZyY +ASm5rDoH6fpLpYgL8CYHi65UqAMhlXWqvSszTMu52iP6uCpjDsKX8VscLnW93LB AqT02p5MqA2T40ydbi8CeVLw3jHl/TuxEGFxV4TG3+shUWg99jUscRWsmfjwtNtd QfGhQUWKvaEf69dRkShNLxDB8+Bo638Uc8uc6qCt8YxhTQYbNV59zCubi3ENBpKY 3jUJwOYN//9DTQJ1W9x7p8a5Evt0QHCkCsw/awYxvAOwzge9e56khg+qNCML1BUO IuqLowz9bntBXS6KKqujfYJtyJ90apYsoyGRZXC4GEOp9umht2pg+vKgiulVtszg ot7u+vfJSmzVMEbMmm4eWSkhuRxNM3T/ElcQPp+U19P1vQTDHSUStSNEeAQepI2b E3bmrwBxrLWzifQ050EUKgJXZID9MXeGhnA+Thx6NNfl8odIos1gqOQmrvzBj8mE 31MvxvJY1oToStwistbm5xCj8QslkaAJX7SNuRWps0+AKkbf1fqlmcl0lDOLz+WK qQv71U/oIhDTFxrOZvBRi/1zpdiiicK5wWjDxlGNWKzccTLTeRQ= =DB7W -----END PGP SIGNATURE-----