Описание
A flaw was found in coredns. This issue could lead to invalid cache entries returning due to incorrectly implemented caching.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Logging Subsystem for Red Hat OpenShift | openshift-logging/logging-loki-rhel8 | Not affected | ||
| Red Hat Advanced Cluster Management for Kubernetes 2 | rhacm2/lighthouse-agent-rhel9 | Will not fix | ||
| Red Hat OpenShift Container Platform 4.13 | openshift4/ose-coredns | Fixed | RHSA-2024:6009 | 04.09.2024 |
| Red Hat OpenShift Container Platform 4.14 | openshift4/ose-coredns | Fixed | RHSA-2024:6406 | 11.09.2024 |
| Red Hat OpenShift Container Platform 4.15 | openshift4/ose-coredns-rhel9 | Fixed | RHSA-2024:4850 | 31.07.2024 |
| Red Hat OpenShift Container Platform 4.16 | openshift4/ose-coredns-rhel9 | Fixed | RHSA-2024:0041 | 27.06.2024 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-524
https://bugzilla.redhat.com/show_bug.cgi?id=2219234coredns: CD bit response is cached and served later
5.3 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.3
nvd
больше 1 года назад
A flaw was found in coredns. This issue could lead to invalid cache entries returning due to incorrectly implemented caching.
CVSS3: 5.3
debian
больше 1 года назад
A flaw was found in coredns. This issue could lead to invalid cache en ...
CVSS3: 5.3
fstec
больше 1 года назад
Уязвимость DNS сервера coredns, связанная с раскрытием информации посредством кэширования, позволяющая нарушителю проводить спуфинг-атаки
5.3 Medium
CVSS3