CVE-2023-46849: Use of --fragment option can lead to a division by zero error which can be fatal

OpenVPN 2.6 from v2.6.0 up to and including v.2.6.6 incorrectly restore "--fragment" configuration in some circumstances. This can lead to a division by zero error. On platforms where division by zero is fatal, this will cause OpenVPN to crash.

This issue is resolved in OpenVPN 2.6.7.

MITRE entry:

Last modified 6 months ago Last modified on 11/09/23 15:20:33