Issued:: 2026-03-19
Updated:: 2026-03-19

RHSA-2026:5124 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: capstone security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for capstone is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security community.

Security Fix(es):

capstone: Capstone: Memory corruption via unchecked vsnprintf return (CVE-2025-68114)
capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution. (CVE-2025-67873)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6 x86_64
Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

BZ - 2423416 - CVE-2025-68114 capstone: Capstone: Memory corruption via unchecked vsnprintf return
BZ - 2423419 - CVE-2025-67873 capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.

CVEs

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
x86_64
capstone-4.0.2-11.el9_6.i686.rpm	SHA-256: 684333d30b327138546e490ac706c066f63960fd80136b41c9c01faba5126061
capstone-4.0.2-11.el9_6.x86_64.rpm	SHA-256: f05de0eef25ecfce2602b1e190acd792b78e41be07e6d6fa28235c1d186d2b02
capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: bd85f707279d85c4daad5eb2bef75908a6e0dab9ba2070ac9c0a11bc2f209100
capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: c295c08d7b7fdfe82b1636f6d75592c5c72f0aa1ca14737c5b3934bb14569070
capstone-debugsource-4.0.2-11.el9_6.i686.rpm	SHA-256: a2882f7b3b1aa9a131d5dc09db64b1e3ae8df16bf3d56aa344e5921615ed8dd4
capstone-debugsource-4.0.2-11.el9_6.x86_64.rpm	SHA-256: a31e3c09dd3d0ddb28313e7fce39fb342d2eebafe1bbeb627df7e117345c080a
python3-capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: b37e6eba4b5031e6b5471f35e1669b052633e128497f212fcc0c31608576db06
python3-capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: 4d9968a2120c13c9415f0b0860d368db0f638ece01d83eccca6a97f97e8a4822

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
x86_64
capstone-4.0.2-11.el9_6.i686.rpm	SHA-256: 684333d30b327138546e490ac706c066f63960fd80136b41c9c01faba5126061
capstone-4.0.2-11.el9_6.x86_64.rpm	SHA-256: f05de0eef25ecfce2602b1e190acd792b78e41be07e6d6fa28235c1d186d2b02
capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: bd85f707279d85c4daad5eb2bef75908a6e0dab9ba2070ac9c0a11bc2f209100
capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: c295c08d7b7fdfe82b1636f6d75592c5c72f0aa1ca14737c5b3934bb14569070
capstone-debugsource-4.0.2-11.el9_6.i686.rpm	SHA-256: a2882f7b3b1aa9a131d5dc09db64b1e3ae8df16bf3d56aa344e5921615ed8dd4
capstone-debugsource-4.0.2-11.el9_6.x86_64.rpm	SHA-256: a31e3c09dd3d0ddb28313e7fce39fb342d2eebafe1bbeb627df7e117345c080a
python3-capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: b37e6eba4b5031e6b5471f35e1669b052633e128497f212fcc0c31608576db06
python3-capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: 4d9968a2120c13c9415f0b0860d368db0f638ece01d83eccca6a97f97e8a4822

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
s390x
capstone-4.0.2-11.el9_6.s390x.rpm	SHA-256: 17140f63f134765db5c145923664d2fc3bd337c2dd7b9237b9b4d4f5ccbab2b5
capstone-debuginfo-4.0.2-11.el9_6.s390x.rpm	SHA-256: 5322eb5f2455084a5f241c52b26efac66f11cbcb9c6f8315c3e41cad091a9953
capstone-debugsource-4.0.2-11.el9_6.s390x.rpm	SHA-256: 884450ca83c499b797311965d49b7708db1dd870d469cb5ce1ee77a8d5f593ce
python3-capstone-debuginfo-4.0.2-11.el9_6.s390x.rpm	SHA-256: f983602f23e99b7edd874e4c1cd02797d99c1dbf71eab83db99ffb9689c3d526

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
ppc64le
capstone-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 867c9d41f68473519430b83dc9d3a5f5770779a5ca8890e0c344274c7e696fa6
capstone-debuginfo-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 95d0d8ef1fe6e39fd66129b1504a92dff1e58725cbfe80580387f76da9b664d8
capstone-debugsource-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 798df7d54da4afd7b5714ababa6f76ad5696da3d8ed080aee1be5ddf0b6854eb
python3-capstone-debuginfo-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 6f4088c1dc12cc590fceed6497d8bc69b58659d919c25f7c0060ab766890ee4b

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
aarch64
capstone-4.0.2-11.el9_6.aarch64.rpm	SHA-256: 09b12b5ee71bb1a89691dcaa4b52db2fd13b7d9afddc230054a2f8939825a7e0
capstone-debuginfo-4.0.2-11.el9_6.aarch64.rpm	SHA-256: b93858596e58da74c10169bcc6702305c274f48bda6a2d7a0a34e79a17878133
capstone-debugsource-4.0.2-11.el9_6.aarch64.rpm	SHA-256: 9bb5a43194a25c9563848f2597da2354318d31ec7d1d92c68c5c1067c14f7c4c
python3-capstone-debuginfo-4.0.2-11.el9_6.aarch64.rpm	SHA-256: e9e5ed6ff455b2736c1c4dbf9e415b30eed74d65c80f740a99fc0414fd5b153b

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
ppc64le
capstone-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 867c9d41f68473519430b83dc9d3a5f5770779a5ca8890e0c344274c7e696fa6
capstone-debuginfo-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 95d0d8ef1fe6e39fd66129b1504a92dff1e58725cbfe80580387f76da9b664d8
capstone-debugsource-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 798df7d54da4afd7b5714ababa6f76ad5696da3d8ed080aee1be5ddf0b6854eb
python3-capstone-debuginfo-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 6f4088c1dc12cc590fceed6497d8bc69b58659d919c25f7c0060ab766890ee4b

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
x86_64
capstone-4.0.2-11.el9_6.i686.rpm	SHA-256: 684333d30b327138546e490ac706c066f63960fd80136b41c9c01faba5126061
capstone-4.0.2-11.el9_6.x86_64.rpm	SHA-256: f05de0eef25ecfce2602b1e190acd792b78e41be07e6d6fa28235c1d186d2b02
capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: bd85f707279d85c4daad5eb2bef75908a6e0dab9ba2070ac9c0a11bc2f209100
capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: c295c08d7b7fdfe82b1636f6d75592c5c72f0aa1ca14737c5b3934bb14569070
capstone-debugsource-4.0.2-11.el9_6.i686.rpm	SHA-256: a2882f7b3b1aa9a131d5dc09db64b1e3ae8df16bf3d56aa344e5921615ed8dd4
capstone-debugsource-4.0.2-11.el9_6.x86_64.rpm	SHA-256: a31e3c09dd3d0ddb28313e7fce39fb342d2eebafe1bbeb627df7e117345c080a
python3-capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: b37e6eba4b5031e6b5471f35e1669b052633e128497f212fcc0c31608576db06
python3-capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: 4d9968a2120c13c9415f0b0860d368db0f638ece01d83eccca6a97f97e8a4822

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.6

SRPM
x86_64
capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: bd85f707279d85c4daad5eb2bef75908a6e0dab9ba2070ac9c0a11bc2f209100
capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: c295c08d7b7fdfe82b1636f6d75592c5c72f0aa1ca14737c5b3934bb14569070
capstone-debugsource-4.0.2-11.el9_6.i686.rpm	SHA-256: a2882f7b3b1aa9a131d5dc09db64b1e3ae8df16bf3d56aa344e5921615ed8dd4
capstone-debugsource-4.0.2-11.el9_6.x86_64.rpm	SHA-256: a31e3c09dd3d0ddb28313e7fce39fb342d2eebafe1bbeb627df7e117345c080a
capstone-devel-4.0.2-11.el9_6.i686.rpm	SHA-256: 295437b173bae94aba81a2ede0981414066efcaad2ecdd3c8e6f6320a4756e6e
capstone-devel-4.0.2-11.el9_6.x86_64.rpm	SHA-256: 7dab1ad1dd43a0ddbcc0303b3402ab1b04e62d202ebd977873cf686615deb47c
capstone-java-4.0.2-11.el9_6.noarch.rpm	SHA-256: 61d0dc24da65ea013c2e38eaae0d5222f6435cc39401b1ca3bf6ed632e5756ff
python3-capstone-4.0.2-11.el9_6.x86_64.rpm	SHA-256: 65b6018795af653b989ce478e92e8d181abb3221e86cf2dc475b9c18237a5e05
python3-capstone-debuginfo-4.0.2-11.el9_6.i686.rpm	SHA-256: b37e6eba4b5031e6b5471f35e1669b052633e128497f212fcc0c31608576db06
python3-capstone-debuginfo-4.0.2-11.el9_6.x86_64.rpm	SHA-256: 4d9968a2120c13c9415f0b0860d368db0f638ece01d83eccca6a97f97e8a4822

Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.6

SRPM
ppc64le
capstone-debuginfo-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 95d0d8ef1fe6e39fd66129b1504a92dff1e58725cbfe80580387f76da9b664d8
capstone-debugsource-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 798df7d54da4afd7b5714ababa6f76ad5696da3d8ed080aee1be5ddf0b6854eb
capstone-devel-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: ffa6054c9bd281028db858b9bc803d211abdc69599ea2798f78bb7567c79e66c
capstone-java-4.0.2-11.el9_6.noarch.rpm	SHA-256: 61d0dc24da65ea013c2e38eaae0d5222f6435cc39401b1ca3bf6ed632e5756ff
python3-capstone-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 59e9ed187e2f99a5cb7aef49c95e4d5f71b587f9751eb7910d4adae92b08cebd
python3-capstone-debuginfo-4.0.2-11.el9_6.ppc64le.rpm	SHA-256: 6f4088c1dc12cc590fceed6497d8bc69b58659d919c25f7c0060ab766890ee4b

Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.6

SRPM
s390x
capstone-debuginfo-4.0.2-11.el9_6.s390x.rpm	SHA-256: 5322eb5f2455084a5f241c52b26efac66f11cbcb9c6f8315c3e41cad091a9953
capstone-debugsource-4.0.2-11.el9_6.s390x.rpm	SHA-256: 884450ca83c499b797311965d49b7708db1dd870d469cb5ce1ee77a8d5f593ce
capstone-devel-4.0.2-11.el9_6.s390x.rpm	SHA-256: 88acf41440831c90d8886e494e6ba2406e3b0bdcec5320fbe9bc61b488cadc9d
capstone-java-4.0.2-11.el9_6.noarch.rpm	SHA-256: 61d0dc24da65ea013c2e38eaae0d5222f6435cc39401b1ca3bf6ed632e5756ff
python3-capstone-4.0.2-11.el9_6.s390x.rpm	SHA-256: 9314d93ad7dbe5f14ff2abda13dec81a1a5d11607d633a05f12bfba5cd773ec4
python3-capstone-debuginfo-4.0.2-11.el9_6.s390x.rpm	SHA-256: f983602f23e99b7edd874e4c1cd02797d99c1dbf71eab83db99ffb9689c3d526

Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.6

SRPM
aarch64
capstone-debuginfo-4.0.2-11.el9_6.aarch64.rpm	SHA-256: b93858596e58da74c10169bcc6702305c274f48bda6a2d7a0a34e79a17878133
capstone-debugsource-4.0.2-11.el9_6.aarch64.rpm	SHA-256: 9bb5a43194a25c9563848f2597da2354318d31ec7d1d92c68c5c1067c14f7c4c
capstone-devel-4.0.2-11.el9_6.aarch64.rpm	SHA-256: 0c966b82afe4132f1daca69c549371f5c48739253dec3f9c2df1037cb485e129
capstone-java-4.0.2-11.el9_6.noarch.rpm	SHA-256: 61d0dc24da65ea013c2e38eaae0d5222f6435cc39401b1ca3bf6ed632e5756ff
python3-capstone-4.0.2-11.el9_6.aarch64.rpm	SHA-256: f47a67eb1cfb84b3e8f12deb5ecc7b35b5f0946b066a01e8a9ce50f7dbac760b
python3-capstone-debuginfo-4.0.2-11.el9_6.aarch64.rpm	SHA-256: e9e5ed6ff455b2736c1c4dbf9e415b30eed74d65c80f740a99fc0414fd5b153b

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
aarch64
capstone-4.0.2-11.el9_6.aarch64.rpm	SHA-256: 09b12b5ee71bb1a89691dcaa4b52db2fd13b7d9afddc230054a2f8939825a7e0
capstone-debuginfo-4.0.2-11.el9_6.aarch64.rpm	SHA-256: b93858596e58da74c10169bcc6702305c274f48bda6a2d7a0a34e79a17878133
capstone-debugsource-4.0.2-11.el9_6.aarch64.rpm	SHA-256: 9bb5a43194a25c9563848f2597da2354318d31ec7d1d92c68c5c1067c14f7c4c
python3-capstone-debuginfo-4.0.2-11.el9_6.aarch64.rpm	SHA-256: e9e5ed6ff455b2736c1c4dbf9e415b30eed74d65c80f740a99fc0414fd5b153b

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
capstone-4.0.2-11.el9_6.src.rpm	SHA-256: 92d3a839ebc02374da102b78a6b01242e1cfe3f76ddd9e6af3d712ed44151eec
s390x
capstone-4.0.2-11.el9_6.s390x.rpm	SHA-256: 17140f63f134765db5c145923664d2fc3bd337c2dd7b9237b9b4d4f5ccbab2b5
capstone-debuginfo-4.0.2-11.el9_6.s390x.rpm	SHA-256: 5322eb5f2455084a5f241c52b26efac66f11cbcb9c6f8315c3e41cad091a9953
capstone-debugsource-4.0.2-11.el9_6.s390x.rpm	SHA-256: 884450ca83c499b797311965d49b7708db1dd870d469cb5ce1ee77a8d5f593ce
python3-capstone-debuginfo-4.0.2-11.el9_6.s390x.rpm	SHA-256: f983602f23e99b7edd874e4c1cd02797d99c1dbf71eab83db99ffb9689c3d526

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation