For errata on a certain release, click below:
2.0,
2.1,
2.2,
2.3,
2.4,
2.5,
2.6,
2.7,
2.8,
2.9,
3.0,
3.1,
3.2,
3.3,
3.4,
3.5,
3.6,
3.7,
3.8,
3.9,
4.0,
4.1,
4.2,
4.3,
4.4,
4.5,
4.6,
4.7,
4.8,
4.9,
5.1,
5.2,
5.3,
5.4,
5.5,
5.6,
5.7,
5.8,
5.9,
6.0,
6.1,
6.2,
6.3,
6.4,
6.5,
6.6,
6.7,
6.8,
6.9,
7.0,
7.1,
7.2,
7.3,
7.4,
7.5,
7.6,
7.7,
7.8.
Patches for the OpenBSD base system are distributed as unified diffs.
Each patch contains usage instructions.
All the following patches are also available in one
tar.gz file
for convenience.
Patches for supported releases are also incorporated into the
-stable branch.
-
001: RELIABILITY FIX: November 30, 2011
All architectures
A vulnerability has been found in BIND's named server
(CVE-2011-4313).
An unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent
queries for which could crash the resolvers with an assertion failure.
A source code patch exists which remedies this problem.
-
002: SECURITY FIX: April 23, 2012
All architectures
A heap overflow vulnerability has been found in libcrypto's ASN.1 parsing code
(CVE-2012-2110).
A source code patch exists which remedies this problem.