BSDSec

deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: December 1st, 2017 (fktrace)

An errata patch has been released for OpenBSD 6.2.

The fktrace(2) system call had insufficient security checks.
This update disables fktrace(2) entirely.

Binary updates for the amd64, i386, and arm64 platforms are available via
the syspatch utility. Source code patches can be found on the respective
errata page:

  https://www.openbsd.org/errata62.html

As this affects the kernel, a reboot will be needed after patching.