-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:48:56 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: mipsel Version: 1.9.2+really1.9.1+dfsg-1+deb11u1 Distribution: bullseye-security Urgency: high Maintainer: mipsel Build Daemon (mipsel-osuosl-05) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.9.2+really1.9.1+dfsg-1+deb11u1) bullseye-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bullseye. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: 2dc9bfb6808ef53c6b3f0a4c39287f658bb80521 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 158ab168ea0c199ae8b02115bd435a2dda0a8edd 14400612 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 4dc2708332cb7e829150c1b3e1bbaed8865cb571 1597964 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb e12cdbc8d63d1d85fdd537de53af73a90b3ff82d 35719884 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 05a4ccd42b9fdc72c3290ca67f715ebf09343602 75084 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb ef48ba9318deb4910e7d6efd4fd9869cfdb0f24a 16837 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel-buildd.buildinfo cb858c602243a7024eeca42eb8eccdd56c8ba647 1391824 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb Checksums-Sha256: 5933d777d97e43d8575d4a1bb8cae967bcd63c4cec6dbd25f025c071edd2898d 104172 liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 1305e3f85e25a3d07fee2f0c1d6a07da243bf9043a31e101b672346b0108b515 14400612 liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 5c5541c5b949bc3a325f4a0c755372513a8dc6c8b2c2f244f33ea5fad6a03372 1597964 liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 77cc2ca91245c6de7d4c26dd13b61a198ef4b907ff8aba0da6ab2dfe226cc5b1 35719884 orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb f9129cbf1064acd934788210f84b0a45cd91d462fff023a73fcb760672863f75 75084 orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb b44bd6cc57e5b42f06d55cf94debf794fa6324fa5c2487b9f28c0ba50e396a00 16837 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel-buildd.buildinfo a92c1267244d482d05dda73116400ec8e0a396e336cb3ecd027b3efbe0a5a7e3 1391824 orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb Files: 1d97d986578510405a04e40eeef984a7 104172 libdevel optional liborthancframework-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 5756682b3938f425977805c7892621d6 14400612 debug optional liborthancframework1-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 3eeb385f198adbdcf5b233af98bbc86e 1597964 libs optional liborthancframework1_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 188727ac296847888a0cdf511927018e 35719884 debug optional orthanc-dbgsym_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 44ea0ed9c7c7c9e038e16ea1be7b6ba8 75084 libdevel optional orthanc-dev_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb 80462ea5c9e3861a27e500cb54a6c87b 16837 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel-buildd.buildinfo c18925b86bce6b0afd1b73235ba8f0e9 1391824 science optional orthanc_1.9.2+really1.9.1+dfsg-1+deb11u1_mipsel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE7FUbSrfgk+qhJhySoQbzkdO+xGgFAmS6w8wACgkQoQbzkdO+ xGjxYBAAk6vFfN5j+8a6nHQPJkqDfA5i6MSrh/0CQPX3jna1GE+s1GMaS1zHxJoM dJYyH1z6uXK3h4ODtvSDB32za+Bce4vPmpScwpl+l+UT4Yx5z3K3P0PfoNFLaRCi r8QYOYnUuSzJ5LVeqJdm6PRA3kinKzf3SlMXulcX7WQwdJClV9VJzHGgCPw14Lir B0Ss6PApWIj9lRBmJ3yZ66izuaSSaLj9YWkv4FZScEfgAYU3C4TtLVq50apgg2IG xUdEx1XdCyRjOSGLYGMbxPm3CCUOe6PxCr8PozsyybivsEKovxAqSY1IG3cP/cur pj2+7TWh7cUwDM8YvUvd6Ev/3CN6G5Ld6RM1Sd/cM7zVHSbRHk0kcZjd4bF1JFj5 9DPAB7vKfvlyMvLUxXmRiSBOBMaGBya9S5/vPqzYX7O+R+Q47ZfWVDsrH+FCbUE/ iu6BPsPzT4tX3NdSIN5MDhbPp13i4hboLiGjza/FTv7vGjewZ3YZnC3NidpoBtlP TbPGuusevRb5oQfnB5X+owmjamA4LtUbaQXonTeV85Gu9666FoJOdPk4XQ6QEkcK gYRuUKBRD8G4wok5U4fiu7tB5Mh2TQ+MbNS3OnPy8LnyaX1L9X7+sP/1BBLwy3Bb PY2q2+9L1oQcdu/BRiwZCIXLJV1S+Zz5nB3ilcuK6x0zBmCtYMA= =s0tF -----END PGP SIGNATURE-----