deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: January 30th, 2020 (smtpd_tls)

Errata patches for OpenSMTPD have been released for OpenBSD 6.5 and 6.6.

smtpd can crash on opportunistic TLS downgrade, causing a denial of service.

Binary updates for the amd64, i386, and arm64 platforms are available via
the syspatch utility. Source code patches can be found on the respective
errata page:

After patching, restart the smtpd service.