BSDSec

deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: March 9th, 2021 (npppd)

8 March, 2021 by bluhm@openbsd.org | openbsd 

Errata patches for npppd have been released for OpenBSD 6.7 and 6.8.

npppd PPTP protocol handler can cause heap over-read leading to a crash.

Binary updates for the amd64, i386, and arm64 platforms are available via
the syspatch utility. Source code patches can be found on the respective
errata page:

  https://www.openbsd.org/errata67.html
  https://www.openbsd.org/errata68.html