CVE-2025-68114

Name
CVE-2025-68114
Description
Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, an unchecked vsnprintf return in SStream_concat lets a malicious cs_opt_mem.vsnprintf drive SStream’s index negative or past the end, leading to a stack buffer underflow/overflow when the next write occurs. Commit 2c7797182a1618be12017d7d41e0b6581d5d529e fixes the issue.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
security-advisories@github.com https://github.com/capstone-engine/capstone/commit/2c7797182a1618be12017d7d41e0b6581d5d529e
security-advisories@github.com https://github.com/capstone-engine/capstone/security/advisories/GHSA-85f5-6xr3-q76r

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:capstone-engine:capstone:*:*:*:*:*:*:*:* capstone >= None < 6.0.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
capstone edge-community 5.0.6-r0 Celeste <cielesti@protonmail.com> possibly vulnerable
capstone edge-community 5.0.5-r0 Celeste <cielesti@protonmail.com> possibly vulnerable
capstone edge-community 5.0.3-r1 Celeste <cielesti@protonmail.com> possibly vulnerable
capstone edge-community 5.0.3-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
capstone 3.23-community 5.0.6-r0 Celeste <cielesti@protonmail.com> possibly vulnerable