Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-67873

Опубликовано: 17 дек. 2025
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 4.8

Описание

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make cs_disasm/cs_disasm_iter memcpy more than 24 bytes into cs_insn.bytes, causing a heap buffer overflow in the disassembly path. Commit cbef767ab33b82166d263895f24084b75b316df3 fixes the issue.

РелизСтатусПримечание
devel

needs-triage

esm-apps/bionic

needs-triage

esm-apps/focal

needs-triage

esm-apps/jammy

needs-triage

esm-apps/noble

needs-triage

esm-apps/xenial

needs-triage

jammy

needs-triage

noble

needs-triage

plucky

ignored

end of life, was needs-triage
questing

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 2%
0.00015
Низкий

4.8 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2025-67873

CVSS3: 4.8
nvd
около 2 месяцев назад

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can make cs_disasm/cs_disasm_iter memcpy more than 24 bytes into cs_insn.bytes, causing a heap buffer overflow in the disassembly path. Commit cbef767ab33b82166d263895f24084b75b316df3 fixes the issue.

debian логотип

CVE-2025-67873

CVSS3: 4.8
debian
около 2 месяцев назад

Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prio ...

suse-cvrf логотип

SUSE-SU-2026:0060-1

suse-cvrf
около 1 месяца назад

Security update for capstone

EPSS

Процентиль: 2%
0.00015
Низкий

4.8 Medium

CVSS3

Уязвимость CVE-2025-67873