Astra Linux – Vulnerability in Capstone
Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and earlier, a unchecked return from vsnprintf in SStreamconcat allowed a malicious csoptmem.vsnprintf to manipulate SStream’s index beyond its limit, resulting in a stack buffer underflow/overflow when the next write operation occurre...