Swift package
github.com/sparkle-project/sparkle
pkg:swift/github.com/sparkle-project/sparkle
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-0509 | — | < 2.6.4 | 2.6.4 | Feb 4, 2025 | A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks. |
- CVE-2025-0509Feb 4, 2025affected < 2.6.4fixed 2.6.4
A security issue was found in Sparkle before version 2.6.4. An attacker can replace an existing signed update with another payload, bypassing Sparkle’s (Ed)DSA signing checks.