Medium severity6.5NVD Advisory· Published Nov 17, 2017· Updated Jun 17, 2026
CVE-2017-1000168
CVE-2017-1000168
Description
sodiumoxide 0.0.13 and older scalarmult() vulnerable to degenerate public keys
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
sodiumoxidecrates.io | < 0.0.14 | 0.0.14 |
Affected products
2- cpe:2.3:a:sodiumoxide_project:sodiumoxide:*:*:*:*:*:*:*:*Range: <=0.0.13
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-2wc6-2rcj-8v76ghsaADVISORY
- github.com/dnaq/sodiumoxide/issues/154nvdIssue TrackingThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2017-1000168ghsaADVISORY
- github.com/sodiumoxide/sodiumoxide/commit/24c7a5550807ac8a09648b5878f19d14c3a69135ghsaWEB
- rustsec.org/advisories/RUSTSEC-2017-0001.htmlghsaWEB
News mentions
0No linked articles in our index yet.