CNNVD-202601-1449 Information

CNNVD ID

CNNVD-202601-1449

Related CVE

CVE-2025-68151

• CNNVD Published: 2026-01-08

Description (Chinese)

CoreDNS是CoreDNS社区的一个 DNS 服务器。 CoreDNS 1.14.0之前版本存在安全漏洞，该漏洞源于缺少资源限制控制，可能导致内存耗尽和服务崩溃。

Description (English)

CreDNS is a DNS server for the CoreDNS community. The pre-CoreDNS 1.14.0 security loophole, which stems from a lack of control over resource constraints, could lead to depletion of memory and collapse of services.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

CoreDNS

Published

2026-01-08

Last Modified

2026-02-24

References

https://github.com/coredns/coredns/commit/0d8cbb1a6bcb6bc9c1a489865278b8725fa20812 https://github.com/coredns/coredns/pull/7490 https://github.com/coredns/coredns/security/advisories/GHSA-527x-5wrf-22m2

Patch

https://github.com/coredns/coredns/releases