openSUSE Backports Critical Update re Heap Overflow DoS Risk 2026-0181-1

opensuse

June 1, 2026

An update that contains security fixes can now be installed.

Description

This update for re fixes the following issues:

* Fixed integer overflow in websock_decode() masked frame length check

leads to heap buffer overflow.

* Fix DTLS single_conn mode lacks peer address validation, allowing

connection hijacking and DoS #3705.

Topics Covered

security advisory buffer overflow critical DoS OpenSUSE backports

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP7:

zypper in -t patch openSUSE-2026-181=1

Package List

- openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64):

libre16-3.4.0-bp157.2.3.1

re-devel-3.4.0-bp157.2.3.1

References

Severity

critical

Lowest

Low

Medium

High

Critical

Announcement ID: openSUSE-SU-2026:0181-1

Rating: critical

Affected Products: openSUSE Backports SLE-15-SP7

Topics Covered

security advisory buffer overflow critical DoS OpenSUSE backports

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE Backports Critical Update re Heap Overflow DoS Risk 2026-0181-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE Backports Critical Update re Heap Overflow DoS Risk 2026-0181-1

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!