CVE-2021-41689 — NULL Pointer Dereference in Dcmtk

CWE-476 — NULL Pointer Dereference10 documents5 sources

Severity

7.5HIGHNVD

EPSS

0.1%

top 70.71%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Offis Dcmtk Debian Dcmtk

Timeline

PublishedJun 28

Latest updateJul 8

Description

DCMTK through 3.6.6 does not handle string copy properly. Sending specific requests to the dcmqrdb program, it would query its database and copy the result even if the result is null, which can incur a head-based overflow. An attacker can use it to launch a DoS attack.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶debiandebian/dcmtk< dcmtk 3.6.7-1 (bookworm)

▶Debianoffis/dcmtk< 3.6.5-1+deb11u1+3

▶Ubuntuoffis/dcmtk< 3.6.4-2.1ubuntu0.1+11

▶NVDoffis/dcmtk3.6.6

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

dcmtk regression↗2025-07-08

▶

OSV

dcmtk vulnerabilities↗2024-09-17

▶

OSV

dcmtk vulnerabilities↗2023-02-22

▶

GHSA

GHSA-558h-5pv9-xxg9: DCMTK through 3↗2022-06-29

▶

OSV

CVE-2021-41689: DCMTK through 3↗2022-06-28

▶

📋Vendor Advisories

Ubuntu

DCMTK regression↗2025-07-08

▶

Ubuntu

DCMTK vulnerabilities↗2024-09-17

▶

Ubuntu

DCMTK vulnerabilities↗2023-02-22

▶

Debian

CVE-2021-41689: dcmtk - DCMTK through 3.6.6 does not handle string copy properly. Sending specific reque...↗2021

▶