GHSA-435g-fcv3-8j26: Bug-Fixes in `libcrux-ecdh`, `libcrux-ed25519`, `libcrux-psq`
(updated )
In accordance with our security policy for libcrux, we publish a GitHub security advisory for any releases whose CHANGELOG includes bug-fixes, and encourage our users to upgrade. The latest releases of the libcrux-ecdh, libcrux-ed25519 and libcrux-psq crates contain the following bug-fixes:
References
- github.com/advisories/GHSA-435g-fcv3-8j26
- github.com/cryspen/libcrux
- github.com/cryspen/libcrux/commit/4d6f5d3c2542b6179a6474dec8cfb8b8ddf31a84
- github.com/cryspen/libcrux/commit/a09022c5811ca7fd1c6d9a239ff294d64ee86734
- github.com/cryspen/libcrux/commit/f303b6446c19fe9a7c993f61e426023609cd5fac
- github.com/cryspen/libcrux/pull/1301
- github.com/cryspen/libcrux/pull/1319
- github.com/cryspen/libcrux/pull/1320
- github.com/cryspen/libcrux/security/advisories/GHSA-435g-fcv3-8j26
- rustsec.org/advisories/RUSTSEC-2026-0023.html
- rustsec.org/advisories/RUSTSEC-2026-0024.html
- rustsec.org/advisories/RUSTSEC-2026-0025.html
- rustsec.org/advisories/RUSTSEC-2026-0026.html
Code Behaviors & Features
Detect and mitigate GHSA-435g-fcv3-8j26 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →