VYPR

crates.io package

zebra-script

pkg:cargo/zebra-script

Vulnerabilities (2)

  • CVE-2026-44497CriMay 8, 2026
    affected < 6.0.0fixed 6.0.0

    ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.4.0 and prior to zebra-script version 6.0.0, the fix for CVE-2026-41583 introduced a separate issue due to insufficient error handling of the case where the sighash type is invalid, during sighash computati

  • CVE-2026-41583CriMay 8, 2026
    affected < 5.0.2fixed 5.0.2

    ZEBRA is a Zcash node written entirely in Rust. Prior to zebrad version 4.3.1 and prior to zebra-script version 5.0.2, after a refactoring, Zebra failed to validate a consensus rule that restricted the possible values of sighash hash types for V5 transactions which were enabled i