Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-67873

Опубликовано: 17 дек. 2025
Источник: ubuntu
Приоритет: medium
CVSS3: 4.8

Описание

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make cs_disasm/cs_disasm_iter memcpy more than 24 bytes into cs_insn.bytes, causing a heap buffer overflow in the disassembly path. Commit cbef767ab33b82166d263895f24084b75b316df3 fixes the issue.

РелизСтатусПримечание
devel

needs-triage

esm-apps/bionic

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-apps/xenial

needs-triage

jammy

needs-triage

noble

needs-triage

plucky

ignored

end of life, was needs-triage
questing

needs-triage

Показывать по

Ссылки на источники

4.8 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-67873

CVSS3: 6.1
redhat
3 месяца назад

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make cs_disasm/cs_disasm_iter memcpy more than 24 bytes into cs_insn.bytes, causing a heap buffer overflow in the disassembly path. Commit cbef767ab33b82166d263895f24084b75b316df3 fixes the issue.

nvd логотип

CVE-2025-67873

CVSS3: 4.8
nvd
3 месяца назад

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make cs_disasm/cs_disasm_iter memcpy more than 24 bytes into cs_insn.bytes, causing a heap buffer overflow in the disassembly path. Commit cbef767ab33b82166d263895f24084b75b316df3 fixes the issue.

msrc логотип

CVE-2025-67873

CVSS3: 4.8
msrc
26 дней назад

Capstone doesn't check Skipdata length, leading to cs_insn.bytes heap buffer overflow

debian логотип

CVE-2025-67873

CVSS3: 4.8
debian
3 месяца назад

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prio ...

suse-cvrf логотип

SUSE-SU-2026:0060-1

suse-cvrf
3 месяца назад

Security update for capstone

4.8 Medium

CVSS3