| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|
| CVE-2026-5445 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | An out-of-bounds read vulnerability exists in the `DecodeLookupTable` ... |
| CVE-2026-5444 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A heap buffer overflow vulnerability exists in the PAM image parsing l ... |
| CVE-2026-5443 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A heap buffer overflow vulnerability exists during the decoding of `PA ... |
| CVE-2026-5442 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A heap buffer overflow vulnerability exists in the DICOM image decoder ... |
| CVE-2026-5441 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | An out-of-bounds read vulnerability exists in the `DecodePsmctRle1` fu ... |
| CVE-2026-5440 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A memory exhaustion vulnerability exists in the HTTP server due to unb ... |
| CVE-2026-5439 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A memory exhaustion vulnerability exists in ZIP archive processing. Or ... |
| CVE-2026-5438 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | A gzip decompression bomb vulnerability exists when Orthanc processes ... |
| CVE-2026-5437 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | An out-of-bounds read vulnerability exists in `DicomStreamReader` duri ... |
| CVE-2025-15581 | fixed | vulnerable | vulnerable | fixed | fixed | Orthanc versions before 1.12.10 are affected by an authorisation logic ... |
| CVE-2024-22725 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Orthanc versions before 1.12.2 are affected by a reflected cross-site ... |