-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:48:56 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: armhf Version: 1.9.2+really1.9.1+dfsg-1+deb11u1 Distribution: bullseye-security Urgency: high Maintainer: arm Build Daemon (arm-arm-04) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.9.2+really1.9.1+dfsg-1+deb11u1) bullseye-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bullseye. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: 36ccf1781a58820065606d6e77e8798cac5c8796 104176 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 289bee7d15448169f2e997e056d53c7755dca3ac 12785972 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 8f75ed55066c16d9a3ec5314a06c230550bccde4 1254128 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb e51f61ab96a312e5e3b6e0f9342e35ad483bbe65 32652556 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 0dfac91130491b071d807b7ce02c09d1a778c17f 75080 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb af6db2096ae9e6529246bde1e7b04a03e72f8a2f 16869 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf-buildd.buildinfo ba604fce43d31a7d2a3482969b64693818452841 1353704 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb Checksums-Sha256: e74ae2f4fda16bb62d48bdf987f76564f7265cf5246b2b4e65b77134955b6e4a 104176 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb ca8cbd1511f8ec406e6c427bcf88b9e52f7f42e864e1cdb46b58cea70f58d5cf 12785972 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 0bc7223bc697cbfa690ad490a4f4cdf6abc63af28b4f8e37e3feafcaae51d0fa 1254128 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 9cc95bd6a3780d56ce11ab41644fc2fe7c517d990ed158ba7ff2c1449c70c249 32652556 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb b8d85133571f9e0842ab5f2a05413bbb70c8a0ca20bf2879f034a9bd95a97829 75080 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 6d0210407947ae3acd57d81fe87f5324fe0ebcd926871055e867cfccf634db0a 16869 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf-buildd.buildinfo 02f9138cb9bd2064f4664ee3a93b41cef26a94badd03727024791eed1d5e30a7 1353704 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb Files: e75f6e6bd1f218ba85178d9264c1b5c3 104176 libdevel optional liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 3b5fd50abb0fe4b3fee0de8c1476566e 12785972 debug optional liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb 78940c6d548e5a78d9d36395cdb3dec0 1254128 libs optional liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb b734523a2f8a5f22cab2b1a69e757fe0 32652556 debug optional orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb c77a2070f82bbd3917164befac6df79f 75080 libdevel optional orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb a9fe99fc47cc04fc5c72a46190c51e06 16869 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf-buildd.buildinfo d490d9aa6368387e5de167dadf7b2601 1353704 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEmUDOxnfDwdc47jJKqoc2e3yvTA0FAmS6vuIACgkQqoc2e3yv TA1IsRAAie7DZXL3RIko9b71adT9VWzUEW2I4z1qe+gWTdkI9lQEqWTETHDy6NvH lgjd6ix9Hv9UDkayXO35NlV9t5rmg5BWWclY/Jk3VkblCvgKbwuBXmKo7t1U1tfE ZwKImTuiZt2radZPXHqiJ+uaXMvM/WfrTpMs0nnZ86dxN6hQPma1JxcnnSrBtvJQ nUPWsYW7o8+Pwpl4MaEOzzepZEX/u35Vl7ZNKZakxGCLIJ51BN9P40ctfgMHQLRm i9ZS71KWXJCjpM5uQKd9yZ0e//WwxGf4B34EYoprUYVfvGxuGo9yyDhTc5HHCIVD A6XEvxIJcCoI8+O8WLFxRguGMiil7Q5lk88PNFZXt3wepL8PPyWDxlDyLPZWiGax I9HZRvfegP/HTnTb398QFWnOvKyn6s5+D6Kkwnqs6FQZRJ6YDnPsm3aUT0AaNHSB yNIG1gCg2mVDbNyX4tYJk7f6HDC1sfxOjZP+qB99Ri2clNuwvN/psG6ARCCiTH+c LUOW40p4+J2RFPRGjuTV/3kJKz5JFf5cuxzxytkMvxHTqbMFLveZUgOOkKv2bpV3 /DnKhDf+z710QAE915YUNNw2gO9jwfu+TSQRO3+Ka7AyShvd9iR64JXwOTUL+QM2 SXLGJeVzo7L/S885KoTH5y7PWm78BtS7efWkIrV4BLMmu5lxNTA= =K8pf -----END PGP SIGNATURE-----