deadsimple BSD Security Advisories and Announcements

OpenBSD Errata: September 2nd, 2019 (frag6ecn)

Errata patches for the kernel have been released for OpenBSD 6.4 and 6.5.

When processing ECN bits on incoming IPv6 fragments, the kernel could crash.
Per default pf fragment reassemble prevents the crash. 

Binary updates for the amd64, i386, and arm64 platforms are available
via the syspatch utility. Source code patches can be found on the
respective errata page:

As these affect the kernel, a reboot will be needed after patching.