4 matches found
CVE-2026-22026
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the libcurl writecallback function in the KMC...
EUVD-2026-1890
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the libcurl writecallback function in the KMC...
CVE-2026-22025 CryptoLib Memory Leak on HTTP Error Response in KMC Client
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, when the KMC server returns a non-200 HTTP...
CVE-2026-22025
CryptoLib’s memory-leak vulnerability affects the KMC client: when a non-200 HTTP response is returned, cryptography_encrypt() and cryptography_decrypt() fail to free previously allocated buffers, leaking ~467 bytes per failed request and risking memory exhaustion with repeated failures. This occ...