CVE-2025-12200 | dnsmasq up to 2.73rc6 Config File src/option.c parse_dhcp_opt m null pointer dereference

A vulnerability, which was classified as problematic, has been found in dnsmasq up to 2.73rc6. Affected by this issue is the function parse_dhcp_opt of the file src/option.c of the component Config File Handler. This manipulation of the argument m causes null pointer dereference.

The identification of this vulnerability is CVE-2025-12200. The attack can only be executed locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More