-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Jul 2023 16:00:04 +0200 Source: orthanc Binary: liborthancframework-dev liborthancframework1 liborthancframework1-dbgsym orthanc orthanc-dbgsym orthanc-dev Architecture: s390x Version: 1.10.1+dfsg-2+deb12u1 Distribution: bookworm-security Urgency: high Maintainer: s390x Build Daemon (zani) Changed-By: Étienne Mollier Description: liborthancframework-dev - Orthanc Framework development files liborthancframework1 - Orthanc Framework library orthanc - Lightweight, RESTful DICOM server for medical imaging orthanc-dev - Orthanc development files Closes: 1040597 Changes: orthanc (1.10.1+dfsg-2+deb12u1) bookworm-security; urgency=high . * Team upload. * cve-2023-33466.patch: disable file system writes. This patch backports the option RestApiWriteToFileSystemEnabled to Orthanc in Debian bookworm. This allows delivering Orthanc without being vulnerable to arbitrary writes to the file system by authenticated users, referenced as CVE-2023-33466. The legacy and vulnerable behaviour can be restored by setting the variable RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json. (Closes: #1040597) Checksums-Sha1: 5b7f4d898bdfcbc03c9bb9190f5d8354688d8d90 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_s390x.deb 77e4a74ad98b69b1e9544094069a8d1786e33023 16198480 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_s390x.deb f3546e24b018aca961fae52998ade62478a51263 1533636 liborthancframework1_1.10.1+dfsg-2+deb12u1_s390x.deb b2ad750a378156c30dc4019e8e69c8e6d9b165ba 39264328 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_s390x.deb b7c03d9ead1577cb586b4aa9d9bbdcf0ba88675b 79444 orthanc-dev_1.10.1+dfsg-2+deb12u1_s390x.deb 4b5227e0c51120fe458585080f7d00fe2ae7fc7b 16747 orthanc_1.10.1+dfsg-2+deb12u1_s390x-buildd.buildinfo bb719323ade4e0c9aa0c14dec3cee6867b76bc4f 1481816 orthanc_1.10.1+dfsg-2+deb12u1_s390x.deb Checksums-Sha256: af85730e2887f4a054d8c669d19203c6f52076fe8e20185ce295b46b14d89f59 113056 liborthancframework-dev_1.10.1+dfsg-2+deb12u1_s390x.deb 8b2f38522556aaa4d38c8e967cba8e411b9e178574fb3cf3ffc0789b57166386 16198480 liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_s390x.deb b56e1b4de5e74a1359100d2fc70dbaed66c4abc57074e4c86900e8d4b1c2ac79 1533636 liborthancframework1_1.10.1+dfsg-2+deb12u1_s390x.deb ecffaff2fc97e880454bd7d7b49751e3608f4da95449e831e5705a4174a18f7c 39264328 orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_s390x.deb 6a5f0248bde49c2ef8b088f7aab8d9c77e3ecaf9c067a6643f00af2370cf56f2 79444 orthanc-dev_1.10.1+dfsg-2+deb12u1_s390x.deb 13a2ab694710083105aea0647a83d3cb4bbb053d7042eeeb3cc39548d7fcd0df 16747 orthanc_1.10.1+dfsg-2+deb12u1_s390x-buildd.buildinfo b0564baff023c4acbee2f4a5fb50253fa1818e464dac59af1d386f6aa4d6ec70 1481816 orthanc_1.10.1+dfsg-2+deb12u1_s390x.deb Files: 9607ea37a2f9cea78858778e1794447d 113056 libdevel optional liborthancframework-dev_1.10.1+dfsg-2+deb12u1_s390x.deb 88e7f82268dc2c527363b71e1567891e 16198480 debug optional liborthancframework1-dbgsym_1.10.1+dfsg-2+deb12u1_s390x.deb 8074fb9599537a561819d7d7e3b7725a 1533636 libs optional liborthancframework1_1.10.1+dfsg-2+deb12u1_s390x.deb 531f29637e3d3b2b05b4b8084bd42e18 39264328 debug optional orthanc-dbgsym_1.10.1+dfsg-2+deb12u1_s390x.deb f3482295a39979f2e82fc19209d275cb 79444 libdevel optional orthanc-dev_1.10.1+dfsg-2+deb12u1_s390x.deb 7df076573944f2e60daa9c50a7f8d68f 16747 science optional orthanc_1.10.1+dfsg-2+deb12u1_s390x-buildd.buildinfo 29fde096231e57aee830e9bdf3d23dc1 1481816 science optional orthanc_1.10.1+dfsg-2+deb12u1_s390x.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEKrZTN06npYMYIgrtXmwDt3BKCdIFAmTRsIUACgkQXmwDt3BK CdI7qBAArIbfWxjerQZhYPpAwEcx1Bx1fyY83LSlT7rVtFFR2xk9+60dMpBdkjxO 8Hm39Xn9t8WU1NE0wjNcpg7I0ee/HOX68PGnW7kkV8g9gsjzzhJ6ObElxSbyyt6d ldW/Q7nmclecu5M+hNyMKEU4dT3b+xcrIqtNrny5bK03G6Vx2DPIUggUh/fp+a49 s8K5QCDEewF9ldlEUGhC4DS0fpwlv/ELXwfmRKbQGr+yTh7otdGB2mJlKZz1MrRn jMb9ut1UUwSpFSkWTtamtdcGV70TF3aS+QERFW2tq230zPqijDv8We2Y7+P4uwnS w3gNRhzcyopHqEX5LVFOMk1b4Qzl+LMlm0MQa6W5kxcio93Gd1bOFBeZOYULtQH8 NGSZMuLUJ8rx+UczsOJyxTX1aIyWhrnOpgf7Orm0Nu9PbXx2E5AP5ZK2i+lCvlzS 8f+nt1mG42Nso0I1GSeGAMiBTH4m4+z0oL3hs1wdrH37FeBz1ccQI9bsUqJo8UP+ 1CSHltwhFK6NfNroEqNAbuMiODZzJP69g8OEHBQHM3YSCeDqY0IE5ednSazLvqwT /rSCe0dCKbmw+pivN3OmMDyaJ4koX8btmcjuAGsGdWiVsGmpm6XQvqSITYTXanmh xGB8ndKThd8l5yBI384buK9gFQWxARKkaZuHR+lDCLJUgq5SDKg= =uy14 -----END PGP SIGNATURE-----