There's a merged pull request on the void-packages repository

dnsmasq: patch for CVE-2019-14834
https://github.com/void-linux/void-packages/pull/18124

Description: