Lucene search
K

15 matches found

Amazon
Amazon
added 2026/06/08 12:0 a.m.11 views

Medium: capstone

Issue Overview: Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream's index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Comm...

9.8CVSS7.7AI score0.00163EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.13 views

Amazon Linux 2 : capstone, --advisory ALAS2-2026-3351 (ALAS-2026-3351)

The version of capstone installed on the remote host is prior to 3.0.5-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3351 advisory. Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a...

9.8CVSS7.8AI score0.00163EPSS
Exploits0References4
Amazon
Amazon
added 2026/06/08 12:0 a.m.10 views

Medium: capstone

Issue Overview: Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream's index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Comm...

9.8CVSS7.7AI score0.00163EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.25 views

Amazon Linux 2023 : capstone, capstone-devel, capstone-java (ALAS2023-2026-1772)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1772 advisory. Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream's index negative or past the en...

9.8CVSS7.8AI score0.00163EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/04/09 12:7 p.m.5 views

capstone security update

An update is available for capstone. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Capstone is a disassembly framework with the target of becoming the ultimat...

9.8CVSS7.7AI score0.00191EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.9 views

Oracle Linux 10 : capstone (ELSA-2026-6817)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6817 advisory. - Fix CVE-2025-67873 heap buffer overflow Resolves: RHEL-141551 Tenable has extracted the preceding description block directly from the Oracle Linux...

9.8CVSS6.1AI score0.00191EPSS
Exploits1References3
OSV
OSV
added 2026/03/25 9:40 a.m.2 views

SUSE-SU-2026:20868-1 Security update for capstone

This update for capstone fixes the following issues: - CVE-2025-67873: Skipdata length unchecked leads to csinsn.bytes heap buffer overflow bsc1255309. - CVE-2025-68114: Unchecked vsnprintf return in SStreamconcat allows stack buffer overflow bsc1255310...

9.8CVSS6.1AI score0.00191EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/03/23 12:0 a.m.3 views

RHEL 10 : capstone (RHSA-2026:5224)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5224 advisory. Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the securit...

9.8CVSS6.2AI score0.00191EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.5 views

RHEL 9 : capstone (RHSA-2026:5124)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:5124 advisory. Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security...

9.8CVSS6.2AI score0.00191EPSS
Exploits1References7
Oracle linux
Oracle linux
added 2026/03/18 12:0 a.m.13 views

capstone security update

4.0.2-11 - Fix CVE-2025-68114 memory corruption and CVE-2025-67873 heap buffer overflow Resolves: RHEL-137758...

9.8CVSS5.9AI score0.00191EPSS
Exploits1
Circl
Circl
added 2026/01/08 11:11 a.m.4 views

CVE-2025-68114

creationtimestamp| type| source ---|---|--- 2026-01-08 11:11:59+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mbvtx2bytc2l 2026-01-08 11:12:31+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mbvtxxidbc2l 2026-01-08 11:33:23+00:00| seen|...

9.8CVSS5.8AI score0.00163EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/01/07 4:2 p.m.5 views

Security update for capstone

This update for capstone fixes the following issues: Security issues fixed: CVE-2025-67873: missing bounds check on user-provided skipdata callback can lead to a heap buffer overflow bsc1255309. CVE-2025-68114: unchecked vsnprintf return value can lead to a stack buffer overflow bsc1255310. Other...

4.8CVSS7AI score0.00191EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-68114

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf driv...

9.8CVSS7.4AI score0.00163EPSS
Exploits0References3
OSV
OSV
added 2025/12/17 10:16 p.m.3 views

AZL-72821 CVE-2025-68114 affecting package capstone 4.0.2-4

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

9.8CVSS5.9AI score0.00163EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/12/17 9:14 p.m.3 views

CVE-2025-68114

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

9.8CVSS5.4AI score0.00163EPSS
Exploits0
Rows per page
Query Builder