Well I checked the archive, and it seems that only the issues that devs deem as exploitable are posted to security-announce, and errata.html.
Never fear, if there is a 'sploitable bug that Theo & co. know about, they're going to let you know about it too. After all, OpenBSD's reputation could be tarnished. Keep on hacksoaring. Travers
