Red Hat Security Advisory: capstone security update
Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security community. Security Fix(es): * capstone: Capstone: Memory corruption via unchecked vsnprintf return (CVE-2025-68114) * capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution. (CVE-2025-67873) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
AI Analysis
Technical Summary
Capstone, a disassembly framework used for binary analysis and reversing, contains two security vulnerabilities. CVE-2025-68114 is a memory corruption issue caused by an unchecked vsnprintf return value. CVE-2025-67873 is a heap buffer overflow triggered via the skipdata callback, which can allow denial of service or arbitrary code execution. Red Hat Product Security has released an update for Red Hat Enterprise Linux 10 and related products to address these vulnerabilities. The advisory covers multiple architectures including x86_64, s390x, ppc64le, and aarch64. The update is rated as important by Red Hat and fixes are available in capstone version 5.0.1-7.el10_1 packages.
Potential Impact
The memory corruption vulnerability (CVE-2025-68114) may lead to unpredictable behavior or crashes. The heap buffer overflow vulnerability (CVE-2025-67873) can cause denial of service or potentially allow arbitrary code execution, posing a significant risk to affected systems. These vulnerabilities affect Red Hat Enterprise Linux 10 and related CodeReady Linux Builder 10 packages across multiple hardware architectures. Exploitation could compromise system stability or security.
Mitigation Recommendations
Red Hat has released updated capstone packages (version 5.0.1-7.el10_1) that address these vulnerabilities. Users of Red Hat Enterprise Linux 10 and CodeReady Linux Builder 10 should apply these updates promptly. Detailed instructions for applying the update are available at https://access.redhat.com/articles/11258. No other mitigation steps are indicated by the vendor advisory.
Red Hat Security Advisory: capstone security update
Description
Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security community. Security Fix(es): * capstone: Capstone: Memory corruption via unchecked vsnprintf return (CVE-2025-68114) * capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution. (CVE-2025-67873) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Capstone, a disassembly framework used for binary analysis and reversing, contains two security vulnerabilities. CVE-2025-68114 is a memory corruption issue caused by an unchecked vsnprintf return value. CVE-2025-67873 is a heap buffer overflow triggered via the skipdata callback, which can allow denial of service or arbitrary code execution. Red Hat Product Security has released an update for Red Hat Enterprise Linux 10 and related products to address these vulnerabilities. The advisory covers multiple architectures including x86_64, s390x, ppc64le, and aarch64. The update is rated as important by Red Hat and fixes are available in capstone version 5.0.1-7.el10_1 packages.
Potential Impact
The memory corruption vulnerability (CVE-2025-68114) may lead to unpredictable behavior or crashes. The heap buffer overflow vulnerability (CVE-2025-67873) can cause denial of service or potentially allow arbitrary code execution, posing a significant risk to affected systems. These vulnerabilities affect Red Hat Enterprise Linux 10 and related CodeReady Linux Builder 10 packages across multiple hardware architectures. Exploitation could compromise system stability or security.
Mitigation Recommendations
Red Hat has released updated capstone packages (version 5.0.1-7.el10_1) that address these vulnerabilities. Users of Red Hat Enterprise Linux 10 and CodeReady Linux Builder 10 should apply these updates promptly. Detailed instructions for applying the update are available at https://access.redhat.com/articles/11258. No other mitigation steps are indicated by the vendor advisory.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:6817
- Cve Count
- 2
- Additional Cves
- ["CVE-2025-68114"]
- Cvss Version
- null
Threat ID: 6a27e9928dd33fbd85169e7b
Added to database: 6/9/2026, 10:23:14 AM
Last enriched: 6/9/2026, 10:35:46 AM
Last updated: 6/10/2026, 6:48:16 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.