Bug #1026: dcmqrscp may crash when reading malformed configuration file - DCMTK - OFFIS DCMTK and DICOM Projects

Actions

Copy link

Bug #1026

closed

dcmqrscp may crash when reading malformed configuration file

Added by Marco Eichelberg over 3 years ago. Updated over 3 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Marco Eichelberg

Category:

Library and Apps

Target version:

3.6.8

Start date:

2022-05-24

Due date:

% Done:

100%

Estimated time:

1:00 h

Module:

dcmqrscp

Operating System:

Compiler:

Description

Three issues have been detected in class DcmQueryRetrieveConfig that may cause an application crash of dcmqrscp when reading a malformed configuration file, due to insufficient validation of the input data. The issues can be reproduced by compiling DCMTK (on Linux, with gcc) using the following cmake options:

cmake -G"Unix Makefiles" .. -DCMAKE_C_FLAGS="-g -fprofile-arcs -ftest-coverage -fsanitize=address" -DCMAKE_CXX_FLAGS="-g -fprofile-arcs -ftest-coverage -fsanitize=address"

and then running dcmqrscp -c bugN_dcmqrscp.cfg with one of the three configuration files provided below.

Reported 2022-05-24 by Zahra Mirzamomen <zahra.mirzamomen@monash.edu> and Marcel Böhme <marcel.boehme@mpi-sp.org>.

Files

Download all files

bug1_dcmqrscp.cfg (2.31 KB) bug1_dcmqrscp.cfg	Malformed config file that causes a segmentation fault	Marco Eichelberg, 2022-05-24 11:16
bug2_dcmqrscp.cfg (2.36 KB) bug2_dcmqrscp.cfg	Malformed config file that causes a huge memory allocation	Marco Eichelberg, 2022-05-24 11:16
bug3_dcmqrscp.cfg (261 Bytes) bug3_dcmqrscp.cfg	Malformed config file that causes a stack overflow	Marco Eichelberg, 2022-05-24 11:16

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

DCMTK

Bug #1026

dcmqrscp may crash when reading malformed configuration file

Updated by Marco Eichelberg over 3 years ago