CNNVD-202601-1781 Information

CNNVD ID

CNNVD-202601-1781

Related CVE

CVE-2026-21897

• CNNVD Published: 2026-01-10

Description (Chinese)

CryptoLib是NASA开源的一个应用程序。用于使用 CCSDS 空间数据链路安全协议提供纯软件解决方案。 CryptoLib 1.4.3之前版本存在缓冲区错误漏洞，该漏洞源于数组边界检查不足导致越界写入，可能影响参数查找或注册逻辑。

Description (English)

Criptolib is an application from NASA open source. Provides pure software solutions using CCDS spatial data link security protocols. A previous version of CriptoLib 1.4.3 had an error loophole in the buffer zone, which stemmed from the lack of a number of teams of border checks leading to cross-border writing, which could affect parameters search or registration logic.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

美国国家航空航天局

Published

2026-01-10

Last Modified

2026-02-24

References

https://github.com/nasa/CryptoLib/releases/tag/v1.4.3 https://github.com/nasa/CryptoLib/security/advisories/GHSA-9x7j-gx23-7m5r

Patch

https://github.com/nasa/CryptoLib/releases