VDB

GCVE-110-MAGEIA-2026-4

GCVE-110-MAGEIA-2026-4
Advisory Published
Vulnetix · Advisory published January 10, 2026
Libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group. (CVE-2025-69277)

Affected Products

VendorProductVersionsPlatforms
Mageianvidia470470.256.02-4.mga9.nonfree (unaffected), 0 (affected)
Mageiasodium1.0.18-3.1.mga9 (unaffected), 0 (affected), 0 (affected), 1.0.18-3.1.mga9 (unaffected)

Browse GCVE Records

72,580 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›