capstone security update

An update is available for capstone. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Capstone is a disassembly framework with the target of becoming the ultimat...

Oracle Linux 10 : capstone (ELSA-2026-6817)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6817 advisory. - Fix CVE-2025-67873 heap buffer overflow Resolves: RHEL-141551 Tenable has extracted the preceding description block directly from the Oracle Linux...

SUSE-SU-2026:20868-1 Security update for capstone

This update for capstone fixes the following issues: - CVE-2025-67873: Skipdata length unchecked leads to csinsn.bytes heap buffer overflow bsc1255309. - CVE-2025-68114: Unchecked vsnprintf return in SStreamconcat allows stack buffer overflow bsc1255310...

CLSA-2026-1774374355 capstone: Fix of CVE-2025-67873

CVE-2025-67873: fix heap buffer overflow in csinsn.bytes...

RHEL 10 : capstone (RHSA-2026:5224)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5224 advisory. Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the securit...

RHEL 9 : capstone (RHSA-2026:5124)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5124 advisory. Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security...

capstone security update

4.0.2-11 - Fix CVE-2025-68114 memory corruption and CVE-2025-67873 heap buffer overflow Resolves: RHEL-137758...

Medium: capstone

Issue Overview: Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make csdisasm/csdisasmiter memcpy more than 24 bytes into csinsn.bytes, causing a heap buffer overflow in the disassembly path...

Amazon Linux 2 : capstone, --advisory ALAS2-2026-3133 (ALAS-2026-3133)

The version of capstone installed on the remote host is prior to 3.0.5-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3133 advisory. Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds- checked, so a user-provide...

Security update for capstone

This update for capstone fixes the following issues: Security issues fixed: CVE-2025-67873: missing bounds check on user-provided skipdata callback can lead to a heap buffer overflow bsc1255309. CVE-2025-68114: unchecked vsnprintf return value can lead to a stack buffer overflow bsc1255310. Other...

CVE-2025-67873 Capstone doesn't check Skipdata length, leading to cs_insn.bytes heap buffer overflow

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make csdisasm/csdisasmiter memcpy more than 24 bytes into csinsn.bytes, causing a heap buffer overflow in the disassembly path. Commit...