CVE-2025-2357 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-2357 Interim 1 4 2025-08-13T23:34:34Z current 2025-03-18T00:14:16Z 2025-08-13T23:34:34Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-2357 A vulnerability was found in DCMTK 3.6.9. It has been declared as critical. This vulnerability affects unknown code of the component dcmjpls JPEG-LS Decoder. The manipulation leads to memory corruption. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 3239a7915. It is recommended to apply a patch to fix this issue. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4KKPT4TUWSBKUZJOLDBLHRTKHRBW4RIQ/ E-Mail link for openSUSE-SU-2025:14901-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 15 SP6 openSUSE Leap 15.6 openSUSE Tumbleweed dcmtk-3.6.9-3.1 dcmtk-3.6.9-bp156.4.9.1 dcmtk-devel-3.6.9-3.1 dcmtk-devel-3.6.9-bp156.4.9.1 libdcmtk19-3.6.9-3.1 libdcmtk19-3.6.9-bp156.4.9.1 dcmtk-3.6.9-bp156.4.9.1 as a component of SUSE Package Hub 15 SP6 dcmtk-devel-3.6.9-bp156.4.9.1 as a component of SUSE Package Hub 15 SP6 libdcmtk19-3.6.9-bp156.4.9.1 as a component of SUSE Package Hub 15 SP6 dcmtk-3.6.9-bp156.4.9.1 as a component of openSUSE Leap 15.6 dcmtk-devel-3.6.9-bp156.4.9.1 as a component of openSUSE Leap 15.6 libdcmtk19-3.6.9-bp156.4.9.1 as a component of openSUSE Leap 15.6 dcmtk-3.6.9-3.1 as a component of openSUSE Tumbleweed dcmtk-devel-3.6.9-3.1 as a component of openSUSE Tumbleweed libdcmtk19-3.6.9-3.1 as a component of openSUSE Tumbleweed A vulnerability was found in DCMTK 3.6.9. It has been declared as critical. This vulnerability affects unknown code of the component dcmjpls JPEG-LS Decoder. The manipulation leads to memory corruption. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 3239a7915. It is recommended to apply a patch to fix this issue. CVE-2025-2357 SUSE Package Hub 15 SP6:dcmtk-3.6.9-bp156.4.9.1 SUSE Package Hub 15 SP6:dcmtk-devel-3.6.9-bp156.4.9.1 SUSE Package Hub 15 SP6:libdcmtk19-3.6.9-bp156.4.9.1 openSUSE Leap 15.6:dcmtk-3.6.9-bp156.4.9.1 openSUSE Leap 15.6:dcmtk-devel-3.6.9-bp156.4.9.1 openSUSE Leap 15.6:libdcmtk19-3.6.9-bp156.4.9.1 openSUSE Tumbleweed:dcmtk-3.6.9-3.1 openSUSE Tumbleweed:dcmtk-devel-3.6.9-3.1 openSUSE Tumbleweed:libdcmtk19-3.6.9-3.1 moderate