File _patchinfo of Package patchinfo.42440

<patchinfo incident="42440">
  <issue tracker="bnc" id="1255764">VUL-0: CVE-2025-69277: libsodium: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point function</issue>
  <issue tracker="bnc" id="1256070">VUL-0: CVE-2025-15444: libsodium: Cryptographic bypass via improper elliptic curve point validation</issue>
  <issue tracker="cve" id="2025-69277"/>
  <issue tracker="cve" id="2025-15444"/>
  <packager>lmulling</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libsodium</summary>
  <description>This update for libsodium fixes the following issues: 

- CVE-2025-15444: Fixed cryptographic bypass via improper elliptic curve point validation (bsc#1256070).
- CVE-2025-69277: Fixed incorrect validation of elliptic curve points in crypto_core_ed25519_is_valid_point function (bsc#1255764).
</description>
</patchinfo>