Bug #1172: Possible NULL pointer reference / double free in network module - DCMTK - OFFIS DCMTK and DICOM Projects

Actions

Copy link

Bug #1172

closed

Possible NULL pointer reference / double free in network module

Added by Marco Eichelberg 1 day ago.

Status:

Closed

Priority:

Normal

Assignee:

Michael Onken

Category:

Target version:

Start date:

2025-11-06

Due date:

% Done:

100%

Estimated time:

Module:

Operating System:

Compiler:

Description

The malloced memory for storing all file information are recorded in a global variable LST and are not freed properly. Sending specific requests to the dcmqrdb program can incur a memory leak.

Thanks to Jinsheng Ba <bajinsheng@u.nus.edu> for the report and patches.

Closed by commit #a9697dfeb.

This issue has been registered as CVE-2021-41690 (https://www.cve.org/CVERecord?id=CVE-2021-41690).

No data to display

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

DCMTK

Bug #1172

Possible NULL pointer reference / double free in network module