Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

openSUSE Leap 16.0 pcre2 Moderate Buffer Overread 2026-20512-1

opensuse
Calendar Grey April 21, 2026
Dist Opensuse Esm H88
This update addresses a moderate risk buffer overread issue in pcre2 on openSUSE Leap with an associated CVE ID for tracking.
An update that solves one vulnerability and has one bug fix can now be installed.

Description

This update for pcre2 fixes the following issue:

- CVE-2025-58050: integer overflow leads to heap buffer overread in match_ref due to missing boundary restoration in SCS

(bsc#1248842).

Patch instructions:

To install this openSUSE security update use the suse recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 16.0

zypper in -t patch openSUSE-Leap-16.0-528=1

Patch

Package List

- openSUSE Leap 16.0:

libpcre2-16-0-10.45-160000.3.1

libpcre2-32-0-10.45-160000.3.1

libpcre2-8-0-10.45-160000.3.1

libpcre2-posix3-10.45-160000.3.1

pcre2-devel-10.45-160000.3.1

pcre2-devel-static-10.45-160000.3.1

pcre2-doc-10.45-160000.3.1

pcre2-tools-10.45-160000.3.1

References

* bsc#1248842

References:

* https://www.suse.com/security/cve/CVE-2025-58050.html

Announcement ID: openSUSE-SU-2026:20512-1
Rating: moderate
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here