A Final Return for OpenBSD Anti-Return-Oriented Programming Mitigations
Summary
The article discusses the final implementation of anti-return-oriented programming mitigations in OpenBSD.
Similar Articles
The Return of Aspect Oriented Programming
A blog post revisiting Aspect Oriented Programming, discussing the many cross-cutting concerns programmers must manage, such as correctness, logging, and security.
A Measurement Study on the Adoption of Pledges and Unveils in the OpenBSD Operating System
This paper presents a longitudinal measurement study on the adoption of pledge and unveil system calls in OpenBSD, finding that adoption has steadily grown and that the system calls are relatively easy to adopt, contrary to common beliefs about sandboxing difficulties.
Math is hard (OpenBSD on VAX)
OpenBSD developer details the painful quirks of VAX floating-point exceptions and how they complicate kernel porting.
OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root (CVE-2026-57589)
A use-after-free vulnerability in OpenBSD through version 7.9 allows local attackers to escalate privileges to root. The flaw exists in sysv_sem.c and is identified as CVE-2026-57589.
Back to the Building Blocks’ Building Blocks
The article draws parallels between the security flaws in C/C++ and those in Verilog, arguing that the hardware description language's design leads to bugs and that the industry should invest in safer alternatives, similar to the push for memory-safe programming languages in software.