-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:00:04 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: i386 Version: 1.10.1+dfsg-2+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-csail-01) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.10.1+dfsg-2+deb12u1) bookworm-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bookworm. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: d4fbe64bf9de73b12643903dd69a79ed8f611e1e 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_i386.deb bf05f110365cf79da351ee1ab5ca1ead944525a1 15766192 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_i386.deb d2f892848459be98ae3d2f3f9f9901fc69bf5fb7 1811636 liborthancframework1_1.10.1+dfsg-2+deb12u1_i386.deb 5e92579ec1923d6f6a5ab12009b12440a3265ce4 38575644 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_i386.deb 413efae75ff2386f0115bc94773349cf5a211421 79440 orthanc-dev_1.10.1+dfsg-2+deb12u1_i386.deb 4da7286af1f7668eea19863e7b3f3c0a6ec4cc64 16864 orthanc_1.10.1+dfsg-2+deb12u1_i386-buildd.buildinfo e1f9ef4cdd94ad1e6546db041fec1748286357ef 1822428 orthanc_1.10.1+dfsg-2+deb12u1_i386.deb Checksums-Sha256: d9652df63528b64b4492babf11c69f8863cb8920961252697a2c08af5b8cdd0a 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_i386.deb 71aa891e5c3f1a91b0a09060027e7d380304366425fbdafe560e619853a8487d 15766192 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_i386.deb 5db3a88d48309e00114b452b69243d416436f9ef3f9dbd2a18f46465378c32ab 1811636 liborthancframework1_1.10.1+dfsg-2+deb12u1_i386.deb 6b2c0761e52892eda77824e23b292b3d34bc4654743138646e20c10b2d463147 38575644 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_i386.deb 985e6cf669f6b957ff92b876efd2dc2bc7d2e011c1ddde6ee998adcb1d611b2b 79440 orthanc-dev_1.10.1+dfsg-2+deb12u1_i386.deb 0dff80666097f0707a7bff306e531365a0d22911e36dc256320de98acbc3ded7 16864 orthanc_1.10.1+dfsg-2+deb12u1_i386-buildd.buildinfo 4db7df59cccbbdad6b7cbdc30ba5aea6326f57eb29bef26e381abd46e7aaeb29 1822428 orthanc_1.10.1+dfsg-2+deb12u1_i386.deb Files: 6e93bd91139c64445b49612a0ed0829a 113056 libdevel optional liborthancframework-dev_1.10.1+dfsg-2+deb12u1_i386.deb aee3fffacf89f61d34e00c51c8279c1d 15766192 debug optional liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_i386.deb c3f4371a3c358d63420c5cf1626d1c70 1811636 libs optional liborthancframework1_1.10.1+dfsg-2+deb12u1_i386.deb 31e0285935f50d41ac6d334fb0b111d6 38575644 debug optional orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_i386.deb 81fdd3b27024f7c6df00d539e8046b0f 79440 libdevel optional orthanc-dev_1.10.1+dfsg-2+deb12u1_i386.deb cedcfb2bbf278bb4dd3e920c51841077 16864 science optional orthanc_1.10.1+dfsg-2+deb12u1_i386-buildd.buildinfo 26341b3a2b6b33cb02dee4a8987b14a9 1822428 science optional orthanc_1.10.1+dfsg-2+deb12u1_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE85oDfSLnwLkvY4Ibj5YjFeDZ0JMFAmTSoBUACgkQj5YjFeDZ 0JMORg//a2WonljBOD8SfA5s+NrAO/LmF4nbN+DQcSHAGqhMkiRTGBvX+hu1MLtF ti/zivy6XqYaDh2iVg3vtDzvEjyK0QOFK+pfr4Ygm1eErXRyD72zqf2QV2wUxKCp FRmNUFKwmcxBr87YRkkvzIOEsNKaWruri7rXJol39m6AsCl3B2rukKCkU9g2+1Tm bwhPdQqpvWjDj0jblrenfq5xVlIU4WGwtS+9FoA/qhGgx2nRc6pOYSu8Ftv+HyY3 +w4v+YNUzeSLarCoYfExvzbicjla+Niqh4PS/o9aVcWokyXZhoeECBKrjyMkXQ97 VFcgnQ2Yg1lFqMrJhf5V1XX/qEGw0YYN7p6pBHUHPM41xz4M96+gYfeIliVuyWSY 3nfvdcfmV1/tFWumQnjpf+5ycdoJ3uE3s8zSOxDd4Vob91JmQwyPC5H3NwYsFmxq k9BxbCA1LJAfFkehm7l3bB+C7WNYyGGPxCSaMqzlxBwut5/EdJVR3jqUIf1L4h5c bP6SC0goOXiji2peI1Ubow7dMWsus1QFGszIkhlkUiWFpnaeUa1EWA3L7biJXLrS 1rqPhxg4hZZHX+FNqj/xWXjazoEqSz6chdHDyBRjes30asbqj0MvOUO2t+TlDkAG it+Vp7AHxWTrnkVZ2dPpgmQuw7HIgF8Suz1sDd2aavjzFyAFOio= =8Na7 -----END PGP SIGNATURE-----