Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1ef0433d by Salvatore Bonaccorso at 2026-02-21T23:47:33+01:00
Add Debian bug reference for CVE-2026-26958/golang-filippo-edwards25519
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1003,7 +1003,7 @@ CVE-2026-26960 (node-tar is a full-featured Tar for
Node.js. When using default
CVE-2026-26959 (ADB Explorer is a fluent UI for ADB on Windows. Versions
0.9.26020 and ...)
NOT-FOR-US: ADB Explorer
CVE-2026-26958 (filippo.io/edwards25519 is a Go library implementing the
edwards25519 ...)
- - golang-filippo-edwards25519 <unfixed>
+ - golang-filippo-edwards25519 <unfixed> (bug #1128618)
[trixie] - golang-filippo-edwards25519 <no-dsa> (Minor issue;
MultiScalarMult is a rarely used advanced API)
[bookworm] - golang-filippo-edwards25519 <no-dsa> (Minor issue;
MultiScalarMult is a rarely used advanced API)
NOTE:
https://github.com/FiloSottile/edwards25519/security/advisories/GHSA-fw7p-63qq-7hpr
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ef0433d408c3a2be17a77b1134f6a41db770518
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1ef0433d408c3a2be17a77b1134f6a41db770518
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits