FreeBSD : security/libsodium -- crypto_core_ed25519_is_valid_point mishandles checks for whether an elliptic curve point is valid (583b63f5-ebae-11f0-939f-47e3830276dd)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 583b63f5-ebae-11f0-939f-47e3830276dd advisory. Libsodium maintainer reports: The function cryptocoreed25519isvalidpoint, a low-level function used to...

Debian dsa-6094 : libsodium-dev - security update

The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6094 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6094-1 [email protected] https://www.debian.org/security/...

CVE-2025-69277

libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group...

CVE-2025-69277

libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group...