BSDSec

deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: April 21st, 2018 (httpd)

21 April, 2018 by tj@openbsd.org | openbsd 

Errata patches for httpd have been released for OpenBSD 6.2 and 6.3.

httpd can leak file descriptors when servicing range requests.

Binary updates for the amd64, i386, and arm64 platforms are available via
the syspatch utility. Source code patches can be found on the respective
errata pages:

  https://www.openbsd.org/errata62.html
  https://www.openbsd.org/errata63.html