VulnerableCode Package Details - pkg:deb/debian/python-cryptography@46.0.5-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-f44c-ygbw-bufn	cryptography Vulnerable to a Subgroup Attack Due to Missing Subgroup Validation for SECT Curves ## Vulnerability Summary The `public_key_from_numbers` (or `EllipticCurvePublicNumbers.public_key()`), `EllipticCurvePublicNumbers.public_key()`, `load_der_public_key()` and `load_pem_public_key()` functions do not verify that the point belongs to the expected prime-order subgroup of the curve. This missing validation allows an attacker to provide a public key point `P` from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification (ECDSA) and shared key negotiation (ECDH). When the victim computes the shared secret as `S = [victim_private_key]P` via ECDH, this leaks information about `victim_private_key mod (small_subgroup_order)`. For curves with cofactor > 1, this reveals the least significant bits of the private key. When these weak public keys are used in ECDSA , it's easy to forge signatures on the small subgroup. Only SECT curves are impacted by this. ## Credit This vulnerability was discovered by: - XlabAI Team of Tencent Xuanwu Lab - Atuin Automated Vulnerability Discovery Engine	CVE-2026-26007 GHSA-r6ph-v2qm-q3c2

Vulnerability

Summary

Aliases

VCID-f44c-ygbw-bufn

cryptography Vulnerable to a Subgroup Attack Due to Missing Subgroup Validation for SECT Curves ## Vulnerability Summary The `public_key_from_numbers` (or `EllipticCurvePublicNumbers.public_key()`), `EllipticCurvePublicNumbers.public_key()`, `load_der_public_key()` and `load_pem_public_key()` functions do not verify that the point belongs to the expected prime-order subgroup of the curve. This missing validation allows an attacker to provide a public key point `P` from a small-order subgroup. This can lead to security issues in various situations, such as the most commonly used signature verification (ECDSA) and shared key negotiation (ECDH). When the victim computes the shared secret as `S = [victim_private_key]P` via ECDH, this leaks information about `victim_private_key mod (small_subgroup_order)`. For curves with cofactor > 1, this reveals the least significant bits of the private key. When these weak public keys are used in ECDSA , it's easy to forge signatures on the small subgroup. Only SECT curves are impacted by this. ## Credit This vulnerability was discovered by: - XlabAI Team of Tencent Xuanwu Lab - Atuin Automated Vulnerability Discovery Engine

CVE-2026-26007
GHSA-r6ph-v2qm-q3c2

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-12T18:15:29.229571+00:00	Debian Importer	Fixing	VCID-f44c-ygbw-bufn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:50:38.911514+00:00	Debian Importer	Fixing	VCID-f44c-ygbw-bufn	https://security-tracker.debian.org/tracker/data/json	38.1.0

2026-04-12T18:15:29.229571+00:00

Debian Importer

Fixing

VCID-f44c-ygbw-bufn

https://security-tracker.debian.org/tracker/data/json

38.3.0

2026-04-03T07:50:38.911514+00:00

Debian Importer

Fixing

VCID-f44c-ygbw-bufn

https://security-tracker.debian.org/tracker/data/json

38.1.0