untrusted comment: verify with openbsd-75-base.pub
RWRGj1pRpprAfvRgwd6mbmhckeMM8+RsJNJePNLV+8+Ga1tcf7wCs2JHkEjbxz8ZddfPi7VpK6KXRAhhPTOLDMV3iZrrnOcWFwY=

OpenBSD 7.5 errata 024, April 9, 2025:

Incorrect internal RRDP state handling in rpki-client can lead to a
denial of service.

Apply by doing:
   signify -Vep /etc/signify/openbsd-75-base.pub -x 024_rpki.patch.sig \
       -m - | (cd /usr/src && patch -p0)

And then rebuild and install rpki-client:
   cd /usr/src/usr.sbin/rpki-client
   make obj
   make
   make install

Index: usr.sbin/rpki-client/repo.c
===================================================================
RCS file: /cvs/src/usr.sbin/rpki-client/repo.c,v
diff -u -p -r1.54 repo.c
--- usr.sbin/rpki-client/repo.c 26 Feb 2024 15:40:33 -0000      1.54
+++ usr.sbin/rpki-client/repo.c 7 Apr 2025 19:30:28 -0000
@@ -857,6 +857,7 @@ rrdp_clear(unsigned int id)

       /* remove rrdp repository contents */
       remove_contents(rr->basedir);
+       rr->state = REPO_LOADING;
}

/*

You are viewing proxied material from ftp.icm.edu.pl. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.