{"affected":[{"ecosystem_specific":{"binaries":[{"libsodium23":"1.0.18-150000.4.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.3","name":"libsodium","purl":"pkg:rpm/suse/libsodium&distro=SUSE%20Linux%20Enterprise%20Micro%205.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.18-150000.4.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libsodium23":"1.0.18-150000.4.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.4","name":"libsodium","purl":"pkg:rpm/suse/libsodium&distro=SUSE%20Linux%20Enterprise%20Micro%205.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.18-150000.4.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libsodium23":"1.0.18-150000.4.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.5","name":"libsodium","purl":"pkg:rpm/suse/libsodium&distro=SUSE%20Linux%20Enterprise%20Micro%205.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.18-150000.4.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libsodium-devel":"1.0.18-150000.4.14.1","libsodium23":"1.0.18-150000.4.14.1","libsodium23-32bit":"1.0.18-150000.4.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"libsodium","purl":"pkg:rpm/suse/libsodium&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.18-150000.4.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libsodium23":"1.0.18-150000.4.14.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.2","name":"libsodium","purl":"pkg:rpm/suse/libsodium&distro=SUSE%20Linux%20Enterprise%20Micro%205.2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.18-150000.4.14.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libsodium-devel":"1.0.18-150000.4.14.1","libsodium23":"1.0.18-150000.4.14.1","libsodium23-32bit":"1.0.18-150000.4.14.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"libsodium","purl":"pkg:rpm/opensuse/libsodium&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.18-150000.4.14.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libsodium fixes the following issues: \n\n- CVE-2025-15444: Fixed cryptographic bypass via improper elliptic curve point validation (bsc#1256070).\n- CVE-2025-69277: Fixed incorrect validation of elliptic curve points in crypto_core_ed25519_is_valid_point function (bsc#1255764).\n","id":"SUSE-SU-2026:0368-1","modified":"2026-02-03T13:40:57Z","published":"2026-02-03T13:40:57Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20260368-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1255764"},{"type":"REPORT","url":"https://bugzilla.suse.com/1256070"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-15444"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-69277"}],"related":["CVE-2025-15444","CVE-2025-69277"],"summary":"Security update for libsodium","upstream":["CVE-2025-15444","CVE-2025-69277"]}