CVE-2025-69277

CVE-2025-69277

Name

CVE-2025-69277

Description

libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
cve@mitre.org	https://00f.net/2025/12/30/libsodium-vulnerability/
cve@mitre.org	https://github.com/jedisct1/libsodium/commit/ad3004ec8731730e93fcfbbc824e67eadc1c1bae
cve@mitre.org	https://ianix.com/pub/ed25519-deployment.html
cve@mitre.org	https://news.ycombinator.com/item?id=46435614
cve@mitre.org	https://github.com/pyca/pynacl/commit/96314884d88d1089ff5f336dba61d7abbcddbbf7
cve@mitre.org	https://github.com/pyca/pynacl/commit/ecf41f55a3d8f1e10ce89c61c4b4d67f3f4467cf
cve@mitre.org	https://github.com/pyca/pynacl/issues/920
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2026/01/msg00004.html

Type

URI

cve@mitre.org

https://00f.net/2025/12/30/libsodium-vulnerability/

cve@mitre.org

https://github.com/jedisct1/libsodium/commit/ad3004ec8731730e93fcfbbc824e67eadc1c1bae

cve@mitre.org

https://ianix.com/pub/ed25519-deployment.html

cve@mitre.org

https://news.ycombinator.com/item?id=46435614

cve@mitre.org

https://github.com/pyca/pynacl/commit/96314884d88d1089ff5f336dba61d7abbcddbbf7

cve@mitre.org

https://github.com/pyca/pynacl/commit/ecf41f55a3d8f1e10ce89c61c4b4d67f3f4467cf

cve@mitre.org

https://github.com/pyca/pynacl/issues/920

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2026/01/msg00004.html

CPE URI	Source package	Min version	Max version
	libsodium	== 0	== None

CPE URI

Source package

Min version

Max version

libsodium

== 0

== None

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
libsodium	edge-main	1.0.20-r1	Stuart Cardall <developer@it-offshore.co.uk>	fixed
libsodium	edge-main	1.0.20-r0	Stuart Cardall <developer@it-offshore.co.uk>	possibly vulnerable
libsodium	3.23-main	1.0.20-r1	Stuart Cardall <developer@it-offshore.co.uk>	fixed
libsodium	3.23-main	1.0.20-r0	Stuart Cardall <developer@it-offshore.co.uk>	possibly vulnerable
libsodium	3.22-main	1.0.20-r1	Stuart Cardall <developer@it-offshore.co.uk>	fixed
libsodium	3.22-main	1.0.20-r0	Stuart Cardall <developer@it-offshore.co.uk>	possibly vulnerable
libsodium	3.21-main	1.0.20-r1	Stuart Cardall <developer@it-offshore.co.uk>	fixed
libsodium	3.21-main	1.0.20-r0	Stuart Cardall <developer@it-offshore.co.uk>	possibly vulnerable
libsodium	3.20-main	1.0.19-r1	Stuart Cardall <developer@it-offshore.co.uk>	fixed
libsodium	3.20-main	1.0.19-r0	Stuart Cardall <developer@it-offshore.co.uk>	possibly vulnerable
libsodium	3.19-main	1.0.19-r0	Stuart Cardall <developer@it-offshore.co.uk>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

libsodium

edge-main

1.0.20-r1

Stuart Cardall <developer@it-offshore.co.uk>

fixed

libsodium

edge-main