Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

Ubuntu 22.04 LTS: Critical Info Exposure in libsodium CVE-2025-69277

ubuntu
Calendar Grey January 8, 2026
Dist Ubuntu Esm H88
Sodium library exposes sensitive info vulnerabilities. Update libsodium on various Ubuntu releases now.
Sodium could be made to expose sensitive information.

Summary

Sodium could be made to expose sensitive information.

Software Description:

- libsodium: Network communication, cryptography and signaturing library

Details:

It was discovered that Sodium incorrectly handled the elliptic curve point

validity check in certain atypical use cases. This could result in invalid

points being used, contrary to expectations.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  libsodium23                     1.0.18-1ubuntu0.25.10.1

Ubuntu 25.04
  libsodium23                     1.0.18-1ubuntu0.25.04.1

Ubuntu 24.04 LTS
  libsodium23                     1.0.18-1ubuntu0.24.04.1

Ubuntu 22.04 LTS
  libsodium23                     1.0.18-1ubuntu0.22.04.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7949-1

CVE-2025-69277

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7949-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here