vulnerability
Ubuntu: USN-7777-1 (CVE-2025-58050): PCRE2 vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:N/A:C) | Aug 27, 2025 | Sep 26, 2025 | Sep 29, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:N/A:C)
Published
Aug 27, 2025
Added
Sep 26, 2025
Modified
Sep 29, 2025
Description
It was discovered that PCRE2 incorrectly handled the Scan SubString verb.
An attacker could possibly use this issue to cause applications using PCRE2
to expose sensitive information.
Solutions
ubuntu-upgrade-libpcre2-16-0ubuntu-upgrade-libpcre2-32-0ubuntu-upgrade-libpcre2-8-0ubuntu-upgrade-libpcre2-posix3ubuntu-upgrade-pcre2-utils
References
- CVE-2025-58050
- https://attackerkb.com/topics/CVE-2025-58050
- CWE-122
- CWE-125
- CWE-787
- UBUNTU-USN-7777-1
- URL-https://github.com/PCRE2Project/pcre2/releases/tag/pcre2-10.46
- URL-https://github.com/PCRE2Project/pcre2/security/advisories/GHSA-c2gv-xgf5-5cc2
- URL-https://ubuntu.com/security/notices/USN-7777-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-58050
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.