Thanks for the quick fix (and compliments to SR Labs for finding all these...).
For the sake of the archives - while this is a NULL-pointer crashbug, it
can not be pushed or triggered "from the outside", so it does not get a CVE,
it's just a bug.
The BBs do "does it compile and does t_client with --dns-updown work?" tests,
and this is all green, so I didn't do more than stare-at-code for a bit.
It's also not in 2.6.x, so no backporting needed.
Your patch has been applied to the master branch.
commit 62a17417de26735e04cb527c5df8137e4d50454a
Author: Heiko Hund
Date: Wed Jan 28 12:04:37 2026 +0100
Prevent NULL pointer dereference with --dns-updown
Signed-off-by: Heiko Hund <[email protected]>
Acked-by: Arne Schwabe <[email protected]>
Gerrit URL: https://gerrit.openvpn.net/c/openvpn/+/1498
Message-Id: <[email protected]>
URL:
https://www.mail-archive.com/[email protected]/msg35479.html
Signed-off-by: Gert Doering <[email protected]>
--
kind regards,
Gert Doering
_______________________________________________
Openvpn-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openvpn-devel
