Security Advisories - paragonie/sodium_compat - Packagist.org

paragonie/sodium_compat Security Advisories for v1.19.0 (2)

[MEDIUM] libsodium has Incomplete List of Disallowed Inputs

PKSA-bjyb-w14t-61js CVE-2025-69277 GHSA-mrfv-m5wm-5w6w

Affected version: <1.24.0|>=2,<2.5.0

Reported by:
GitHub
Missing check that a point is on the prime subgroup for Edwards25519

PKSA-8x19-j2j3-bn67

Affected version: >=2,<2.5.0|<1.24.0

Reported by:
FriendsOfPHP/security-advisories