BSDSec

deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: March 10th, 2020 (sysctl)

Errata patches for the kernel have been released for OpenBSD 6.5 and 6.6.

Missing input validation in sysctl(2) can be used to crash the kernel.

Binary updates for the amd64, i386, and arm64 platforms are available
via the syspatch utility. Source code patches can be found on the
respective errata page:

  https://www.openbsd.org/errata65.html
  https://www.openbsd.org/errata66.html

As these affect the kernel, a reboot will be needed after patching.