SecMateSECMATE-2025-0006
VendorNASA
ProductCryptoLib
ReportedNovember 29, 2025
FixedJanuary 6, 2026
PublishedJanuary 9, 2026
AdvisoryGHSA-r3wg-g8xv-gxvf
The cryptography_encrypt() function allocates multiple buffers for HTTP requests and JSON parsing that are never freed on any code path. Each call leaks approximately 400 bytes of memory. Sustained traffic can gradually exhaust available memory.