Nixpkgs security tracker

Untriaged

Permalink CVE-2026-33895

7.5 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): HIGH
Availability impact (A): NONE

created 2 weeks, 4 days ago

Forge has signature forgery in Ed25519 due to missing S > L check

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, Ed25519 signature verification accepts forged non-canonical signatures where the scalar S is not reduced modulo the group order (`S >= L`). A valid signature and its `S + L` variant both verify in forge, while Node.js `crypto.verify` (OpenSSL-backed) rejects the `S + L` variant, as defined by the specification. This class of signature malleability has been exploited in practice to bypass authentication and authorization logic (see CVE-2026-25793, CVE-2022-35961). Applications relying on signature uniqueness (i.e., dedup by signature bytes, replay tracking, signed-object canonicalization checks) may be bypassed. Version 1.4.0 patches the issue.

References

https://github.com/digitalbazaar/forge/security/advisories/GHSA-q67f-28xg-22rw x_refsource_CONFIRM
https://github.com/digitalbazaar/forge/commit/bdecf11571c9f1a487cc0fe72fe78ff6dfa96b85 x_refsource_MISC
https://datatracker.ietf.org/doc/html/rfc8032#section-8.4 x_refsource_MISC

Affected products

forge

==< 1.4.0

Matching in nixpkgs

pkgs.forge

OpenGL interop library that can be used with ArrayFire or any other application using CUDA or OpenCL compute backend

pkgs.forgejo

Self-hosted lightweight software forge

nixos-unstable 14.0.3
- nixpkgs-unstable 14.0.3
- nixos-unstable-small 14.0.3
nixos-25.11 14.0.3
- nixos-25.11-small 14.0.3
- nixpkgs-25.11-darwin 14.0.3

pkgs.fontforge

Font editor

nixos-unstable 20251009
- nixpkgs-unstable 20251009
- nixos-unstable-small 20251009
nixos-25.11 20251009
- nixos-25.11-small 20251009
- nixpkgs-25.11-darwin 20251009

pkgs.forge-mtg

Magic: the Gathering card game with rules enforcement

nixos-unstable 2.0.11
- nixpkgs-unstable 2.0.11
- nixos-unstable-small 2.0.11
nixos-25.11 2.0.11
- nixos-25.11-small 2.0.11
- nixpkgs-25.11-darwin 2.0.11

pkgs.mindforger

Thinking Notebook & Markdown IDE

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0
- nixos-25.11-small 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.forgejo-cli

CLI application for interacting with Forgejo

nixos-unstable 0.4.1
- nixpkgs-unstable 0.4.1
- nixos-unstable-small 0.4.1
nixos-25.11 0.3.0
- nixos-25.11-small 0.3.0
- nixpkgs-25.11-darwin 0.3.0

pkgs.forgejo-lts

Self-hosted lightweight software forge

nixos-unstable 11.0.11
- nixpkgs-unstable 11.0.11
- nixos-unstable-small 11.0.11
nixos-25.11 11.0.11
- nixos-25.11-small 11.0.11
- nixpkgs-25.11-darwin 11.0.11

pkgs.forgejo-mcp

Model Context Protocol (MCP) server for interacting with the Forgejo REST API

nixos-unstable 2.16.0
- nixpkgs-unstable 2.16.0
- nixos-unstable-small 2.16.0

pkgs.mcdreforged

Rewritten version of MCDaemon, a python tool to control your Minecraft server

nixos-unstable 2.15.7
- nixpkgs-unstable 2.15.7
- nixos-unstable-small 2.15.7
nixos-25.11 2.15.6
- nixos-25.11-small 2.15.6
- nixpkgs-25.11-darwin 2.15.6

pkgs.forge-sparks

Get Git forges notifications

nixos-unstable 1.0.1
- nixpkgs-unstable 1.0.1
- nixos-unstable-small 1.0.1
nixos-25.11 1.0.1
- nixos-25.11-small 1.0.1
- nixpkgs-25.11-darwin 1.0.1

pkgs.fontforge-gtk

Font editor

nixos-unstable 20251009
- nixpkgs-unstable 20251009
- nixos-unstable-small 20251009
nixos-25.11 20251009
- nixos-25.11-small 20251009
- nixpkgs-25.11-darwin 20251009

pkgs.forgejo-runner

Runner for Forgejo based on act

nixos-unstable 12.7.3
- nixpkgs-unstable 12.7.2
- nixos-unstable-small 12.7.3
nixos-25.11 12.7.2
- nixos-25.11-small 12.7.3
- nixpkgs-25.11-darwin 12.7.2

pkgs.fontforge-fonttools

Font editor

nixos-unstable 20251009
- nixpkgs-unstable 20251009
- nixos-unstable-small 20251009
nixos-25.11 20251009
- nixos-25.11-small 20251009
- nixpkgs-25.11-darwin 20251009

pkgs.gnomeExtensions.forge

Tiling and window manager for GNOME

nixos-unstable 49.3-development
- nixpkgs-unstable 49.3-development
- nixos-unstable-small 49.3-development
nixos-25.11 49.3-development
- nixos-25.11-small 49.3-development
- nixpkgs-25.11-darwin 49.3-development

pkgs.python312Packages.fontforge

Font editor

nixos-25.11 20251009
- nixos-25.11-small 20251009
- nixpkgs-25.11-darwin 20251009

pkgs.python313Packages.fontforge

Font editor

nixos-unstable 20251009
- nixpkgs-unstable 20251009
- nixos-unstable-small 20251009
nixos-25.11 20251009
- nixos-25.11-small 20251009
- nixpkgs-25.11-darwin 20251009