Source: capstone Version: 4.0.1+really+3.0.5-1 Severity: important Tags: security upstream Forwarded: https://github.com/aquynh/capstone/pull/725 Control: found -1 3.0.4-1
Hi, The following vulnerability was published for capstone. CVE-2016-7151[0]: | Capstone 3.0.4 has an out-of-bounds vulnerability (SEGV caused by a | read memory access) in X86_insn_reg_intel in arch/X86/X86Mapping.c. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2016-7151 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7151 [1] https://github.com/aquynh/capstone/pull/725 Please adjust the affected versions in the BTS as needed, can you double-check for the affected versions? Regards, Salvatore