OpenBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when chpass fails to close file descriptors, which grants descendant processes write access to /etc/master.passwd. This flaw may lead to a loss of integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.