CVE-2026-5442

Name of the Vulnerable Software and Affected Versions DICOM image decoder (affected versions not specified)

Description A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation (VR) Unsigned Long (UL), instead of the expected VR Unsigned Short (US), allowing extremely large dimensions to be processed. This causes an integer overflow during frame size calculation, resulting in out-of-bounds memory access during image decoding.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.