-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:00:04 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: arm64 Version: 1.10.1+dfsg-2+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-ubc-03) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.10.1+dfsg-2+deb12u1) bookworm-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bookworm. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: ea5e6538a8130d0678c6c9f7937bdec9b43c211f 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_arm64.deb 1923eaa787e61a45881248e82ab44b2a2c68cbb8 16086132 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_arm64.deb 39a1194ea2a6891680dc169a2ec1a4e43aeb5b74 1621884 liborthancframework1_1.10.1+dfsg-2+deb12u1_arm64.deb 0213ffe438ec36059c8d1aef76cf062d6337877e 39211160 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_arm64.deb 9452217b3990ee07f42daf65bf81846d5ff66107 79444 orthanc-dev_1.10.1+dfsg-2+deb12u1_arm64.deb 2a1bee7fc40b9126040e9a53010ad1caaec04a41 16913 orthanc_1.10.1+dfsg-2+deb12u1_arm64-buildd.buildinfo 4cce1fae040f1fb55940ed8958f1910253624f9e 1466744 orthanc_1.10.1+dfsg-2+deb12u1_arm64.deb Checksums-Sha256: 458b9846eb7fcb70721ad6f9514d9056f67441bde21fda0d469b9ee26749fc2b 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_arm64.deb a016e6b68af82e03a6f3349bed43814341bc530549ece4589dfe60e1232cff21 16086132 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_arm64.deb c143f991207a8c7178144012b4e4b1fff83b812642a731bc654eeb14b951b1c5 1621884 liborthancframework1_1.10.1+dfsg-2+deb12u1_arm64.deb 756944b4796c3421ab0f27d98532661a967b58da93a6a921073c5b99d9e04217 39211160 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_arm64.deb 373dd6fc591eca12ee3c22801150859d5539913a460071e0e89b536a158af11e 79444 orthanc-dev_1.10.1+dfsg-2+deb12u1_arm64.deb 867084ae2efac0d8e76198e357eec06b09915d7acdfa58bb5baee39a0c9a8954 16913 orthanc_1.10.1+dfsg-2+deb12u1_arm64-buildd.buildinfo 5c825e7167ac6cb26191ffbca5898bd1020f538f65e938aa68dee59afc6d95ec 1466744 orthanc_1.10.1+dfsg-2+deb12u1_arm64.deb Files: 0038aa50c0cdf0424f13bd05ffb0d1db 113056 libdevel optional liborthancframework-dev_1.10.1+dfsg-2+deb12u1_arm64.deb 23bcf37875ce20506dd4924be3bea55f 16086132 debug optional liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_arm64.deb a333332b4d3f6dd7226036a8793fe77b 1621884 libs optional liborthancframework1_1.10.1+dfsg-2+deb12u1_arm64.deb 84d426dcc3354e14747b649a1205c520 39211160 debug optional orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_arm64.deb 4fe5ed781019f61a3dcc68f231d0a1e8 79444 libdevel optional orthanc-dev_1.10.1+dfsg-2+deb12u1_arm64.deb 5a96541556dc7986a90c483bf51a6550 16913 science optional orthanc_1.10.1+dfsg-2+deb12u1_arm64-buildd.buildinfo 999c898954b0efe66651e90ded882551 1466744 science optional orthanc_1.10.1+dfsg-2+deb12u1_arm64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEV2QMHg/7F9BmqsxiZLztDiV8cXAFAmTSm2IACgkQZLztDiV8 cXB+0g/+Jvs5VeurrVUZKya92FCqQZoM8dROTxk8IaX8TyNS9RvgMsNNHF6WSXnt SX05rFVAaXR1pIKM+ptmSlGygxO1WkKyg7WhCNNkqzcAPh9X6wEdUp4rCU8GAeFO IOrXGRJybMs3wHXYOcQnAfXg6QbaI4wW0GRa96GmXl0mn0amEafCAzHQcQEx/s05 XWov+J7gfS7pGUv5xJ94kiqqKZNyB3lDAM9uLV4P7xevVaxs77PMS6vax4esQ4rF K5MzHk7/+WB1bmTFIZWHa5CkW9G6sMYIECl/gyBGqjEQu6zT4qBsFuq6mWeb0oza kngc66D3AXgTlHxMD1pR/jpAfYFzqloAH3x1hcGn2SEq72sLN18n4n910pKshWNm gd5uKJN753K9viA6v2RGeIFAXiF5sl2nmA5chcIPsR9lRZ9q7uNGQYtZhPAr9+La nGw6blxe2ummFvm4Z7HNJ/NW/a1kqodwDndHCv2pKVgIHvmq+KMUbOX60adYpRRL b1VUm5kKVmMJdfCq0FMtB5/4fHsAhDwWoZ/TSdk5Je8Ygg8TcvwNJTIlBhrOTXQY euIC4eiMrf4KrjQX3yDEl/iZ/bwrFU8WBiNQbHCkj7/NStvDVcMrdDrv9KzbF6RT GN27j08Lm9GW8K3P17r2MFvNe0M99FSpqD0TdnITouZUIJeFb6Y= =HyYp -----END PGP SIGNATURE-----