-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:48:56 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: mips64el Version: 1.9.2+really1.9.1+dfsg-1+deb11u1 Distribution: bullseye-security Urgency: high Maintainer: mipsel Build Daemon (mipsel-osuosl-03) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.9.2+really1.9.1+dfsg-1+deb11u1) bullseye-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bullseye. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: 0082d0169f94832d77f5df62f99bf35d28fdf62a 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 4e43e98bfe95e19335dc487d1430e9f85a86d715 14900012 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 6ecb69c19dad0688be98e2ce7589d6356b3de6e5 1730476 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 75e338c60eb6e187f950c562178332da4903cd84 36683864 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 02a4b1b6fd89a47d25169dfd20f68253efe6dde6 75084 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 9b8f909b78c5183ee360dec07f8162b4fce88dd9 16884 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el-buildd.buildinfo fd1e11de2fbaecb5eec08870c67694f88b280faf 1378824 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb Checksums-Sha256: 8002e2b8c83c3f48ddbe410152196f64950a5836c14000da5b21dfdfacb29fe9 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 5a1284e81361af904607421ae6025961fd2f9980ad5506d812a814edf583bdcb 14900012 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb c13ee330af7889abb5178ea6df6092bc808633027e9fc87723d14a0cd7fdb124 1730476 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 162f358ac3f6adee8010a37db6f83eb0a2e0f8439c5001e8733369db2ca55a8b 36683864 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb d8466bb97e33f69c2493b6bc1858f425e6d01bd8eeafe01308ec305100e5ff30 75084 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 4301e67ca5c073130f7fde1a72e048a7bc2b38f6eb83cc7579ad509961c6e3fd 16884 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el-buildd.buildinfo 2b4aabe9e62e4bd8f76b91bdaa23d7fb4a1be53d4112a99c8a32a809ec3f45e4 1378824 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb Files: 5b6f0aae4183e6068c1d1c7ddfc9f39e 104172 libdevel optional liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 11336997276ac5508190b5ae9df80f0c 14900012 debug optional liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 6fae59a757e18e51dc1ecdee3692ef88 1730476 libs optional liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb fce0a82626543f7cad57069b41da848e 36683864 debug optional orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb d825c4983b5b372accf7b657a8905d06 75084 libdevel optional orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb 48d3fe0c59da6dbc7136f52954db2eb6 16884 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el-buildd.buildinfo 84f4e71825560dc969838cec884ad9b5 1378824 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mips64el.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXUZVEjohYGA7PDpMojl408mCs9YFAmS6yDYACgkQojl408mC s9bK9Q/9EsxtJJVEltJeM/NVFDXSsyuU6PP2PtUZ3JLptW5buziRtjMQ7QBuZwiv 3QLnINLAfGv6vIkAGcVdRhy7irjYdU066ZQHmlWBW3NpY5duK8oQZEy79Eg3b0zQ NHwO68YFQeYq7g9GR6s03FBmprMGLiqfnea0GFu+aBvgjy9meuSm10Jjr7YeeyQw xm1Hv/pvyZobzEhpzuzpMBMihIdkw7g83NIlqtgjgqHdaWQODjaA5sAORapiBWDw RCG4Da3oMiy2ODybxGM2dx7wZtjTdaQ9ofCjWMGh2fX3R08UThv9ZeC5PRfMkZYb YS40d22xgNcFdybFx9yATHGIP1WcN6W8OrotUtbV6FSM58HSo77d5Q+qG58aisIs r8Gthoq7e303SsxUaHiG8BuZwTUHMvJSnBGO9YIuO/J5GDUErqkjFOfXm0Y8FMcc wfkBO+4CdpZ6WDn2lwIYUmf6nZpbl/HZt4tZMfcFUAbpu0muQGiI3orZUrDJuHj+ qQtI8e2gCQcWWfXJ6yR9WFylLrZLFJKJov31Vj7WFwjn1MDJDqvfTJiCIDsUJsJ7 yjZwsZVSacE0sOKd1NPHHn9C9eY4JvdfK0v9aPDkaL4tucboN6F6Y0+ZOjcZFOP3 c7CwqjQKGUotFxAKDFaZgRIEScZFjvX/HKfxarSRwLZLxOdz0zQ= =47a2 -----END PGP SIGNATURE-----