PATCH: DevIL CVE-2009-3994 DICOM image processing flaw
A full featured cross-platform image library
Brought to you by:
doomwiz
Stefan Cornelius of Secunia Research found an insufficient
input sanitation in the way DevIL image library used to process
Digital Imaging and Communications in Medicine (DICOM) images.
If a remote attacker could trick a local user to process
a specially-crafted DICOM image in an application, using
the DevIL image processing library, it could lead to
stack-based buffer overflow and denial of service (application
crash).
The attached patch fixes this.
Regards,
Hans de Goede (Fedora DevIl package maintainer)
PATCH: DevIL CVE-2009-3994 DICOM image processing flaw
Thank you, the patch has been committed to the developement branch