Local Access Required,
Local / Remote,
Loss of Integrity
OpenBSD contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a malicious user sends a format string to the printf function to write to a location on the stack, allowing arbitrary code execution with the privileges of the kmem group and possibly root. This flaw may lead to a loss of integrity.
Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.