Grassroot DICOM Out-of-Bounds Read Vulnerability in JPEGBITSCodec InternalCode Function

A vulnerability allowing out-of-bounds read has been identified in the Grassroot DICOM library version 3.024. This issue arises within the JPEGBITSCodec::InternalCode function, where the library processes DICOM files. The vulnerability can be exploited by sending a specially crafted DICOM file, leading to an information leak. The out-of-bounds read occurs because the library fails to properly check the size of the memory buffer before processing image pixel data, allowing malicious files to manipulate the color conversion routines and cause crashes.

Impact

Exploitation of this vulnerability causes a segmentation fault, leading to a crash of the application using the Grassroot DICOM library.

Reproduction

The vulnerability can be reproduced by using the Grassroot DICOM library to process a DICOM file that has been crafted to exploit the out-of-bounds read issue. This can be done by creating a DICOM file that specifies an invalid or excessive image pixel data size, which will trigger the vulnerability when the file is processed.