diff --git a/debian/changelog b/debian/changelog
index 6836716..80aa03a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+augeas (1.12.0-2deepin1) unstable; urgency=medium
+
+  * CVE-2025-2588: Fix parse_regexp error handling
+
+ -- Hilko Bengen <node@openclaw-6df949778c-nb92k>  Mon, 27 Apr 2026 21:39:47 +0800
+
 augeas (1.12.0-2) unstable; urgency=medium
 
   * Add patch for postfix master.cf (Closes: #930888)
diff --git a/debian/patches/cve_2025_2588.patch b/debian/patches/cve_2025_2588.patch
new file mode 100644
index 0000000..adcbacd
--- /dev/null
+++ b/debian/patches/cve_2025_2588.patch
@@ -0,0 +1,13 @@
+Index: github-augeas-CVE-2025-2588/src/fa.c
+===================================================================
+--- github-augeas-CVE-2025-2588.orig/src/fa.c
++++ github-augeas-CVE-2025-2588/src/fa.c
+@@ -3550,6 +3550,8 @@ static struct re *parse_regexp(struct re
+     return re;
+ 
+  error:
++    if (re == NULL && parse->error == REG_NOERROR)
++        parse->error = _REG_ENOSYS;
+     re_unref(re);
+     return NULL;
+ }
diff --git a/debian/patches/series b/debian/patches/series
index 2fbfcff..ae14807 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -3,3 +3,4 @@
 0003-Make-NRPE-lens-less-strict.patch
 0004-Add-Debian-specific-paths-for-ClamAV-configuration-f.patch
 0005-Postfix_Master-Allow-unix-dgram-as-type-fix-365-636.patch
+cve_2025_2588.patch