5 matches found
CVE-2026-26017 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, juicefs, k8sgateway...
CVE-2026-26017 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, kubernetes-dns-node-cache-fips, eks-distro-fips, eks-distro, k8sgateway-fips, juicefs, k8sgateway...
SUSE CVE-2026-26017
CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a logical vulnerability in CoreDNS allows DNS access controls to be bypassed due to the default execution order of plugins. Security plugins such as acl are evaluated before the rewrite plugin, resulting in a Time-of-Check...
CVE-2026-26017
A flaw was found in CoreDNS, a DNS server that uses a chain of plugins. This logical vulnerability allows an attacker to bypass DNS access controls. The issue occurs because security plugins, such as 'acl', are evaluated before the 'rewrite' plugin, creating a Time-of-Check Time-of-Use TOCTOU fla...
AZL-79497 CVE-2026-26017 affecting package coredns 1.11.4-14
CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a logical vulnerability in CoreDNS allows DNS access controls to be bypassed due to the default execution order of plugins. Security plugins such as acl are evaluated before the rewrite plugin, resulting in a Time-of-Check...