imaging security

About this tag
The imaging security tag on WindowsForum.com covers discussions about vulnerabilities and patching in medical imaging and digital imaging software. Recent content focuses on CVE-2025-11266, a memory-corruption defect in the Grassroots DiCoM library (GDCM) that involves an out-of-bounds write when parsing encapsulated PixelData fragments. This flaw can crash applications using GDCM and may lead to more serious memory-corruption outcomes. The advisory recommends upgrading to GDCM 3.2.2 or later and coordinating patches in downstream projects. The tag is relevant for healthcare IT professionals, imaging tool maintainers, and security researchers dealing with digital imaging and communications in medicine.
  1. Patch GDCM CVE-2025-11266: Fix Out-of-Bounds PixelData Write

    A newly disclosed memory‑corruption defect in the open‑source Grassroots DiCoM library (GDCM) gives healthcare and imaging tool maintainers a concrete remediation task this quarter: an out‑of‑bounds write when parsing encapsulated PixelData fragments can crash applications that use GDCM and, in...