CVE-2016-6242

Name of the Vulnerable Software and Affected Versions OpenBSD versions 5.8 through 5.9

Description The issue is related to errors in number handling within the OpenBSD operating system. It can be exploited by a local attacker to cause a denial of service, resulting in an "Assertion failure" error message and a kernel panic, by using a large ident value in the kevent system call.

Recommendations For OpenBSD versions 5.8 and 5.9, consider restricting the use of large ident values in the kevent system call to minimize the risk of exploitation. As a temporary workaround, avoid using the kevent system call with large ident values until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.