CVE-2026-22027— CryptoLib Vulnerable to Heap Buffer Overflow in MariaDB SA Hexstring Conversion
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-22027
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CryptoLib Vulnerable to Heap Buffer Overflow in MariaDB SA Hexstring Conversion
Source: NVD (National Vulnerability Database)
Vulnerability Description
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prior to version 1.4.3, the convert_hexstring_to_byte_array() function in the MariaDB SA interface writes decoded bytes into a caller-provided buffer without any capacity check. When importing SA fields from the database (e.g., IV, ARSN, ABM), a malformed or oversized hex string in the database can overflow the destination buffer, corrupting adjacent heap memory. This issue has been patched in version 1.4.3.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
堆缓冲区溢出
Source: NVD (National Vulnerability Database)
Vulnerability Title
CryptoLib 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CryptoLib是NASA开源的一个应用程序。用于使用 CCSDS 空间数据链路安全协议提供纯软件解决方案。 CryptoLib 1.4.3之前版本存在安全漏洞,该漏洞源于convert_hexstring_to_byte_array函数写入解码字节时缺少容量检查,可能导致缓冲区溢出并损坏堆内存。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-22027
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-22027
请登录查看更多情报信息。
Same Patch Batch · nasa · 2026-01-10 · 10 CVEs total
| CVE-2026-21898 | 8.2 HIGH | CryptoLib Has Out-of-bounds Read in Crypto_AOS_ProcessSecurity |
| CVE-2026-22697 | 7.5 HIGH | CryptoLib Has Heap Buffer Overflow Vulnerability in KMC Base64 Decode Handling (KMC JSON b |
| CVE-2026-21897 | 7.3 HIGH | CryptoLib Has Out-of-Bounds Write in Crypto_Config_Add_Gvcid_Managed_Parameters |
| CVE-2026-21899 | 4.7 MEDIUM | CryptoLib has an out-of-bounds read and crash vulnerability when decoding an empty Base64u |
| CVE-2026-21900 | CryptoLib Has Out-of-Bounds Read in KMC Encrypt Metadata Parsing via Flawed strtok Pattern | |
| CVE-2026-22025 | CryptoLib Memory Leak on HTTP Error Response in KMC Client | |
| CVE-2026-22026 | CryptoLib Unbounded Memory Allocation in KMC HTTP Response Handler Allows Resource Exhaust | |
| CVE-2026-22023 | CryptoLib Has Out-of-Bounds Read in KMC AEAD Encrypt Metadata Parsing via Flawed strtok Pa | |
| CVE-2026-22024 | CryptoLib Memory Leak in KMC Encrypt Function Leads to Resource Exhaustion |
IV. Related Vulnerabilities
Same product: CryptoLib
- CVE-2026-22697
CryptoLib Has Heap Buffer Overflow Vulnerability in KMC Base - CVE-2026-22026
CryptoLib Unbounded Memory Allocation in KMC HTTP Response H - CVE-2026-22025
CryptoLib Memory Leak on HTTP Error Response in KMC Client - CVE-2026-22024
CryptoLib Memory Leak in KMC Encrypt Function Leads to Resou - CVE-2026-22023
CryptoLib Has Out-of-Bounds Read in KMC AEAD Encrypt Metadat
Same vendor: nasa
- CVE-2026-41144
F´ (F Prime) has Integer Overflow in FileUplink - CVE-2026-5476
NASA cFS cfe_tbl_passthru_codec.c CFE_TBL_ValidateCodecLoadS - CVE-2026-5475
NASA cFS CCSDS Header Size cfe_sb_priv.c CFE_SB_TransmitMsg - CVE-2026-5474
NASA cFS CCSDS Packet Header to_lab_passthru_encode.c CFE_MS - CVE-2026-5473
NASA cFS Pickle pickle.load deserialization
Same weakness: CWE-122
- CVE-2026-8261
Squirrel sqobject.cpp Load heap-based overflow - CVE-2026-8213
OSGeo gdal Grid File GDapi.c GDSDfldsrch heap-based overflow - CVE-2026-8212
OSGeo gdal SWapi.c SWSDfldsrch heap-based overflow - CVE-2026-42309
Pillow: Heap buffer overflow with nested list coordinates - CVE-2026-45130
Vim: Heap Buffer Overflow in spell file loading
V. Comments for CVE-2026-22027
No comments yet