OpenBSD

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 001_unbound Errata topic: Security: unbound (All architectures) Issued: October 14, 2024 Related CVEs: CVE-2024-8508 Upstream summary: Querying a maliciously constructed DNS zone could result in degraded performance or denial of service. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 002_xserver Errata topic: Security: xserver (All architectures) Issued: October 29, 2024 Related CVEs: CVE-2024-9632 Upstream summary: Fix memory allocation error in the Xkb X11 server extension. CVE-2024-9632 Table of contents Symptom […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 005_expat Errata topic: Security: expat (All architectures) Issued: November 15, 2024 Related CVEs: CVE-2024-50602 Upstream summary: In libexpat fix crash within function XML_ResumeParser. CVE-2024-50602 Table of contents Symptom & Impact Environment […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 010_expat Errata topic: Security: expat (All architectures) Issued: March 18, 2025 Related CVEs: CVE-2024-8176 Upstream summary: In libexpat fix crash caused by stack overflow during recursion. CVE-2024-8176 Table of contents Symptom […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 015_perl Errata topic: Security: perl (All architectures) Issued: April 13, 2025 Related CVEs: CVE-2024-56406 Upstream summary: In Perl, non-ASCII bytes in the left-hand-side of the `tr` operator can overflow an insufficiently […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 020_xserver Errata topic: Security: xserver (All architectures) Issued: July 1, 2025 Related CVEs: CVE-2025-49176 Upstream summary: Previous fix for X11 server was incomplete. CVE-2025-49176 Table of contents Symptom & Impact Environment […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 006_wg Errata topic: Reliability: wg (All architectures) Issued: January 10, 2025 Upstream summary: Traffic sent over wg(4) could result in kernel crash. Table of contents Symptom & Impact Environment & Reproduction […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 008_ssh Errata topic: Security: ssh (All architectures) Issued: February 18, 2025 Upstream summary: sshd(8) denial of service relating to SSH2_MSG_PING handling. ssh(1) server impersonation when VerifyHostKeyDNS enabled. Table of contents Symptom […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 012_ike Errata topic: Security: ike (All architectures) Issued: April 9, 2025 Upstream summary: iked(8) and isakmpd(8) fix double-free in ecdh mode. Table of contents Symptom & Impact Environment & Reproduction Root […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: OpenBSD 7.6 📖 ~4 min read  •  Source: OpenBSD 7.6 errata 013_ssh Errata topic: Security: ssh (All architectures) Issued: April 9, 2025 Upstream summary: sshd(8) fix the DisableForwarding directive, which was failing to disable X11 forwarding and agent forwarding as documented. Table […]