BSDSec

deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: November 29th, 2018 (uipc)

Errata patches for the kernel have been released for OpenBSD 6.3 and 6.4.

UNIX domain sockets leak kernel memory with MSG_PEEK on SCM_RIGHTS, or can
attempt excessive memory allocations leading to a crash.

Binary updates for the amd64, i386, and arm64 platforms are available
via the syspatch utility. Source code patches can be found on the
respective errata page:

  https://www.openbsd.org/errata63.html
  https://www.openbsd.org/errata64.html

As these affect the kernel, a reboot will be needed after patching.