-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:00:04 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: armhf Version: 1.10.1+dfsg-2+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: arm Build Daemon (arm-conova-02) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.10.1+dfsg-2+deb12u1) bookworm-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bookworm. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: e0c9b1fe6ed6e0f5b9404e1292a7ef5d56da8ec7 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_armhf.deb c44d98ca6fbb69fac33857da6b22d4adb482ba6f 14369292 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_armhf.deb d1b6c7194e905fccddcd43cae06c58ffc130f821 1299104 liborthancframework1_1.10.1+dfsg-2+deb12u1_armhf.deb 87636ee05b27af5785453ed7708cdf57c2c5bfba 36323504 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_armhf.deb b96cecbcf2e70253b379515ce896e43bcd82689c 79444 orthanc-dev_1.10.1+dfsg-2+deb12u1_armhf.deb 6b13eea480af279ac8e2f0a0ab1703ab4e3bcafa 16766 orthanc_1.10.1+dfsg-2+deb12u1_armhf-buildd.buildinfo d8159e48ab8b0dd8a25132224253a688775b5cff 1437716 orthanc_1.10.1+dfsg-2+deb12u1_armhf.deb Checksums-Sha256: 422ff5f0636a22f9311f37bce8e409d3426d7d00f0d90f9ee04e9cceccbff707 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_armhf.deb 2f97901a707d6b08c8ac8f26a850a1bbc594d10e67c874a9caca7cf2d527f4c1 14369292 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_armhf.deb f193df6efa5bcb3d84a41024b1d70b33bdc3dc47b5d8a5e1faf4b3944549298b 1299104 liborthancframework1_1.10.1+dfsg-2+deb12u1_armhf.deb 815de0681e537506359ab67f214c65e0d97b3105091d5a99e9c69865af8622f9 36323504 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_armhf.deb 21a6e9cf84c6813fa3d9b086334394f267e40897d1a5ae2cf466d716c14a8769 79444 orthanc-dev_1.10.1+dfsg-2+deb12u1_armhf.deb 02b0c44391d10bbcf1691650074f4cdc72a36a1f6662c15be9036532a8fe90b3 16766 orthanc_1.10.1+dfsg-2+deb12u1_armhf-buildd.buildinfo f63bfadb5a906046ade77944d82b542535862e54a2e1fe7d371250b4596df37b 1437716 orthanc_1.10.1+dfsg-2+deb12u1_armhf.deb Files: 49542d886895ba239f573e9482532865 113056 libdevel optional liborthancframework-dev_1.10.1+dfsg-2+deb12u1_armhf.deb cfbeeeae673dff40294465bf4459f569 14369292 debug optional liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_armhf.deb 8c8077172af2389e111dad8cee31b27a 1299104 libs optional liborthancframework1_1.10.1+dfsg-2+deb12u1_armhf.deb e07e5452d8028f452d953836734779a7 36323504 debug optional orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_armhf.deb 71475c91d305113534bf6c55f65eca26 79444 libdevel optional orthanc-dev_1.10.1+dfsg-2+deb12u1_armhf.deb a3cb0efc76a709a1d770ae07129cc631 16766 science optional orthanc_1.10.1+dfsg-2+deb12u1_armhf-buildd.buildinfo 1130946c0d60e82e7ab3b96573f852fa 1437716 science optional orthanc_1.10.1+dfsg-2+deb12u1_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEBv+o19JDIRm4yIQ5CeROIpkCGwcFAmTSneoACgkQCeROIpkC GwdkeQ//V6+1XbtF62ergSrD2lCqKCPw8f5OsC01b79amCOM0EnOoPK/Sj5RP9iS 3/Vj7inYkbXb+CzA9LtXYIXyyjwlUJ3M+S5539sboF2U66m+/TvmG3xsDKyT/MkM ux2s+lYKSGfVoBuNG9VXNe+PPWsHFwZDUH8G/WRVycS/Z3EHcmSe5olN6DMiHoo3 EYZTODOIZGbYZTk98UdB2p2FrAHXsHuIkGjvzC5cCvkXXNDKY75yCvJDg4IjU2vG Ihsye25q77aX3JrJH/U295I9RXZLhFzis3t1rq0vtXESPNEa4sJcDeifJ5CPRujw sfNyfmmFtHQHE2ypRn5fVw5esQ0ofPT+MfRYRDTVtStoDtE7peFAtmbKDnEdvo// nYH2jWD2cmfUeoqBmfUGvgLQ4eR+GfVYygevATYGGmnfDSn3DiIyC4npTWBAUw4c yZxnj8xR0pIl3Iup2/NfoEOzwVRK3TuR7bkB4+wrh3QV379a8e22YgeeoXcMXStZ dpbtYxUdXjvGkz73UFUtFpCN9p0PBHGy+rEpa6mHeWIlhJbcAmU8Vo/j1BEmVO/+ rFyZdc9nHhEuFgzmnaID0FQ5WkSmOJf+ZUZyILkTEl8JKazNNopa9U7YZvE2XCfT qmn/YloUaqMZ2arW2dQ3jvoKcqIryrwBaxVtINAHYaV5x8Pv9vc= =kIGz -----END PGP SIGNATURE-----