You're thinking about OpenBSD. This is a FreeBSD vulnerability. To change the subject: I wonder if these vulns have anything to do with the slough of recent Linux kernel NULL dereference vulns? I wonder if there is some shared code between the BSD and Linux kernels? Or perhaps BSD security researchers began looking for BSD NULL dereference vulns in light of the recent Linux kernel vulns?