Information on source package node-elliptic

Available versions

ReleaseVersion
bullseye6.5.4~dfsg-1
bookworm6.5.4~dfsg-2
trixie6.6.1+dfsg-1
sid6.6.1+dfsg-1

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2024-48949vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedThe verify function in lib/elliptic/eddsa/index.js in the Elliptic pac ...
CVE-2024-48948vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedThe Elliptic package 6.5.7 for Node.js, in its for ECDSA implementatio ...
CVE-2024-42461vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn the Elliptic package 6.5.6 for Node.js, ECDSA signature malleabilit ...
CVE-2024-42460vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn the Elliptic package 6.5.6 for Node.js, ECDSA signature malleabilit ...
CVE-2024-42459vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn the Elliptic package 6.5.6 for Node.js, EDDSA signature malleabilit ...

Resolved issues

BugDescription
CVE-2020-28498The package elliptic before 6.5.4 are vulnerable to Cryptographic Issu ...
CVE-2020-13822The Elliptic package 6.5.2 for Node.js allows ECDSA signature malleabi ...
Search for package or bug name: Reporting problems