Compiled Patch for the OpenSSL Bug in OpenBSD 3.8
From the Website www.openbsd.org:
016: SECURITY FIX: September 8, 2006 All architectures
Due to incorrect PKCS#1 v1.5 padding validation in OpenSSL, it is possible
for an attacker to construct an invalid signature which OpenSSL would
accept as a valid PKCS#1 v1.5 signature. CVE-2006-4339

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.8/common/016_openssl.patch


You find a compiled version against OpenBSD 3.8 vanilla here:
http://stderr.de/patch_openssl_pkcs1bug.tgz .

It includes the install script from the Makefile in a little shell script.
So just unpack the tar somewhere and run ". ./inst.sh"
sha1sum: 75091bc65ef4f76cf51426c06143d3a7ad6613e6