untrusted comment: verify with openbsd-75-base.pub
RWRGj1pRpprAflDfmF8wTWWI/rtO840mvbOGRmYQI6dVBZiKFJnZysiGpdEnm8YGktc4MfC6LZCcXPdNAyGloxS5W9wokOIoXgc=

OpenBSD 7.5 errata 003, May 10, 2024:

A missing bounds check could lead to a crash due to dereferencing a
zero-sized allocation.

Apply by doing:
   signify -Vep /etc/signify/openbsd-75-base.pub -x 003_libcrypto.patch.sig \
       -m - | (cd /usr/src && patch -p0)

And then rebuild and install libcrypto:
   cd /usr/src/lib/libcrypto
   make obj
   make includes
   make
   make install

Index: lib/libcrypto/lhash/lhash.c
===================================================================
RCS file: /cvs/src/lib/libcrypto/lhash/lhash.c,v
diff -u -p -r1.22 lhash.c
--- lib/libcrypto/lhash/lhash.c 2 Mar 2024 11:11:11 -0000       1.22
+++ lib/libcrypto/lhash/lhash.c 6 May 2024 08:22:28 -0000
@@ -294,7 +294,9 @@ doall_util_fn(_LHASH *lh, int use_arg, L

       /* Restore down load factor and trigger contraction. */
       lh->down_load = down_load;
-       contract(lh);
+       if ((lh->num_nodes > MIN_NODES) &&
+           (lh->down_load >= (lh->num_items * LH_LOAD_MULT / lh->num_nodes)))
+               contract(lh);
}

void