cggmp21 concerns a missing check in the ZK proof that enables an attack in which a single malicious signer can reconstruct full private key.
cggmp21 v0.6.3 is a patch release that contains a fix that introduces this specific missing checkcggmp24 v0.7.0-alpha.2 which contains many other security checks as a precaution. Follow migration guideline to upgrade.Update to cggmp21 v0.6.3, a minor release that contains a minimal security patch.
However, for full mitigation, users will need to upgrade to cggmp24 v0.7.0-alpha.2 as it contains many more security check implementations.
Read this blog post to learn more.
| Score | Percentile |
|---|---|
| 0.04% | 10.91% |
| Base score | Version | Severity | Vector |
|---|---|---|---|
| 9.3 | 4.0 | — |
|
| Type | Value |
|---|---|
| GHSA | GHSA-m95p-425x-x889 ↗ |
| CVE | CVE-2025-66016 ↗ |
Vulnerable version ranges and first patched releases as published by GitHub.
| Ecosystem | Package | Vulnerable range | First patched | Vulnerable functions |
|---|---|---|---|---|
| rust | cggmp21 | < 0.6.3 | 0.6.3 | — |
| rust | cggmp24 | < 0.7.0-alpha.2 | 0.7.0-alpha.2 | — |