Nixpkgs security tracker

Permalink CVE-2026-3706

3.7 LOW

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): High (H)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): None (N)
Integrity (I): Low (L)
Availability (A): None (N)
Exploit Code Maturity (E): Proof-of-Concept (P)
Remediation Level (RL): Official Fix (O)
Report Confidence (RC): Confirmed (C)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): High (H)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): None (N)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): Low (L)
Modified Availability (MA): None (N)

updated 2 months ago by @mweinelt Activity log

Created suggestion 2 months ago
@mweinelt accepted 2 months ago
@mweinelt published on GitHub 2 months ago

mkj Dropbear S Range Check curve25519.c unpackneg signature verification

A vulnerability was determined in mkj Dropbear up to 2025.89. Impacted is the function unpackneg of the file src/curve25519.c of the component S Range Check. This manipulation causes improper verification of cryptographic signature. The attack can be initiated remotely. The attack is considered to have high complexity. The exploitability is considered difficult. The exploit has been publicly disclosed and may be utilized. Patch name: fdec3c90a15447bd538641d85e5a3e3ac981011d. To fix this issue, it is recommended to deploy a patch.

References

VDB-349652 | mkj Dropbear S Range Check curve25519.c unpackneg signature verification vdb-entrytechnical-description
VDB-349652 | CTI Indicators (IOB, IOC, IOA) signaturepermissions-required
Submit #765933 | GitHub Dropbear 2025.89 Improper Verification of Cryptographic Signature third-party-advisory
https://github.com/str4d/ed25519-java/issues/82#issue-727629226 issue-tracking
https://github.com/mkj/dropbear/pull/407 issue-trackingpatch
https://github.com/mkj/dropbear/issues/406#issue-3978907798 issue-trackingexploit
https://github.com/mkj/dropbear/commit/fdec3c90a15447bd538641d85e5a3e3ac981011d patch
https://github.com/mkj/dropbear/ product

Affected products

Dropbear

==2025.82
==2025.60
==2025.5
==2025.81
==2025.45
==2025.84
==2025.38
==2025.83
==2025.59
==2025.86
==2025.30
==2025.40
==2025.6
==2025.20
==2025.26
==2025.36
==2025.87
==2025.68
==2025.58
==2025.67
==2025.16
==2025.8
==2025.1
==2025.44
==2025.64
==2025.39
==2025.15
==2025.76
==2025.49
==2025.57
==2025.4
==2025.10
==2025.29
==2025.27
==2025.37
==2025.24
==2025.18
==2025.7
==2025.69
==2025.19
==2025.47
==2025.48
==2025.0
==2025.33
==2025.78
==2025.53
==2025.70
==2025.61
==2025.13
==2025.42
==2025.62
==2025.80
==2025.11
==2025.14
==2025.51
==2025.32
==2025.23
==2025.35
==2025.25
==2025.54
==2025.74
==2025.88
==2025.12
==2025.50
==2025.79
==2025.9
==2025.85
==2025.17
==2025.72
==2025.55
==2025.3
==2025.21
==2025.46
==2025.63
==2025.77
==2025.75
==2025.41
==2025.31
==2025.89
==2025.28
==2025.43
==2025.22
==2025.73
==2025.2
==2025.34
==2025.56
==2025.65
==2025.71
==2025.52
==2025.66

Matching in nixpkgs

pkgs.dropbear

Small footprint implementation of the SSH 2 protocol

nixos-unstable 2025.89
- nixpkgs-unstable 2025.89
- nixos-unstable-small 2025.89
nixos-25.11 2025.89
- nixos-25.11-small 2025.89
- nixpkgs-25.11-darwin 2025.89

Package maintainers

@abbradar Nikolay Amiantov <ab@fmap.me>

https://github.com/mkj/dropbear/issues/406#issue-3978907798
https://github.com/mkj/dropbear/pull/407

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.dropbear

Package maintainers