OpenBSD Errata: November 17th, 2018 (portsmash)

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

OpenBSD Errata: November 17th, 2018 (portsmash)

T.J. Townsend
Errata patches for libcrypto have been released for OpenBSD 6.4.

The portsmash vulnerability allows exfiltration of elliptic curve keys.

Binary updates for the amd64, i386, and arm64 platforms are available
via the syspatch utility. Source code patches can be found on the errata

Users compiling from source should also rebuild the statically linked
binary /sbin/isakmpd if it is to be used.