capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

CLSA-2026-1774352914 capstone: Fix of CVE-2025-68114

CVE-2025-68114: fix stack buffer underflow/overflow in SStreamconcat...

CLSA-2026-1774347657 capstone: Fix of CVE-2025-68114

CVE-2025-68114: fix stack buffer underflow/overflow in SStreamconcat...

capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

capstone: Capstone: Memory corruption via unchecked vsnprintf return

A flaw was found in Capstone, a disassembly framework. An unchecked return value from vsnprintf within the SStreamconcat function allows a malicious input to manipulate the internal stream index. This can lead to a stack buffer underflow or overflow, potentially enabling a local attacker to achie...

Capstone doesn't check vsnprintf return in SStream_concat, allows stack buffer underflow and overflow

...

AZL-74805 CVE-2025-68114 affecting package rust 1.90.0-3

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

CVE-2025-68114

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStreamconcat lets a malicious csoptmem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit...

Buffer Underflow

Overview Affected versions of this package are vulnerable to Buffer Underflow in the SStreamconcat function due to improper handling of the return value from csvsnprintf. An attacker can cause a stack buffer underflow or overflow by supplying a crafted csoptmem.vsnprintf implementation that...

capstone/fuzz_disasmnext: Stack-buffer-overflow in SStream_concat

Detailed report: https://oss-fuzz.com/testcase?key=5639352435081216 Project: capstone Fuzzer: aflcapstonefuzzdisasmnext Fuzz target binary: fuzzdisasmnext Job Type: aflasancapstone Platform Id: linux Crash Type: Stack-buffer-overflow WRITE 5 Crash Address: 0x7f4820a63634 Crash State: SStreamconca...