openSUSE-SU-2025:0131-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2025:0131-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/openSUSE-SU-2025:0131-1
Related
Published
2025-04-19T22:01:42Z
Modified
2025-04-20T15:00:20.763837Z
Upstream
Summary
Security update for coredns
Details

This update for coredns fixes the following issues:

  • Update to version 1.12.1:

    • core: Increase CNAME lookup limit from 7 to 10 (#7153)
    • plugin/kubernetes: Fix handling of pods having DeletionTimestamp set
    • plugin/kubernetes: Revert 'only create PTR records for endpoints with hostname defined'
    • plugin/forward: added option failfastallunhealthy_upstreams to return servfail if all upstreams are down
    • bump dependencies, fixing boo#1239294 and boo#1239728

  • Update to version 1.12.0:

    • New multisocket plugin - allows CoreDNS to listen on multiple sockets
    • bump deps

  • Update to version 1.11.4:

    • forward plugin: new option next, to try alternate upstreams when receiving specified response codes upstreams on (functions like the external plugin alternate)
    • dnssec plugin: new option to load keys from AWS Secrets Manager
    • rewrite plugin: new option to revert EDNS0 option rewrites in responses

  • Update to version 1.11.3+git129.387f34d:

    • fix CVE-2024-51744 (bsc#1232991) build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (#6955)
    • core: set cache-control max-age as integer, not float (#6764)
    • Issue-6671: Fixed the order of plugins. (#6729)
    • root: explicit mark dnssec support (#6753)
    • feat: dnssec load keys from AWS Secrets Manager (#6618)
    • fuzzing: fix broken oss-fuzz build (#6880)
    • Replace k8s.io/utils/strings/slices by Go stdlib slices (#6863)
    • Update .go-version to 1.23.2 (#6920)
    • plugin/rewrite: Add 'revert' parameter for EDNS0 options (#6893)
    • Added OpenSSF Scorecard Badge (#6738)
    • fix(cwd): Restored backwards compatibility of Current Workdir (#6731)
    • fix: plugin/auto: call OnShutdown() for each zone at its own OnShutdown() (#6705)
    • feature: log queue and buffer memory size configuration (#6591)
    • plugin/bind: add zone for link-local IPv6 instead of skipping (#6547)
    • only create PTR records for endpoints with hostname defined (#6898)
    • fix: reverter should execute the reversion in reversed order (#6872)
    • plugin/etcd: fix etcd connection leakage when reload (#6646)
    • kubernetes: Add useragent (#6484)
    • Update build (#6836)
    • Update grpc library use (#6826)
    • Bump go version from 1.21.11 to 1.21.12 (#6800)
    • Upgrade antonmedv/expr to expr-lang/expr (#6814)
    • hosts: add hostsfile as label for corednshostsentries (#6801)
    • fix TestCorefile1 panic for nil handling (#6802)
References

Affected packages

SUSE:Package Hub 15 SP6 / coredns

Package

Name
coredns
Purl
pkg:rpm/suse/coredns&distro=SUSE%20Package%20Hub%2015%20SP6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.1-bp156.4.6.5

Ecosystem specific 

{
    "binaries": [
        {
            "coredns-extras": "1.12.1-bp156.4.6.5",
            "coredns": "1.12.1-bp156.4.6.5"
        }
    ]
}

openSUSE:Leap 15.6 / coredns

Package

Name
coredns
Purl
pkg:rpm/opensuse/coredns&distro=openSUSE%20Leap%2015.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.1-bp156.4.6.5

Ecosystem specific 

{
    "binaries": [
        {
            "coredns-extras": "1.12.1-bp156.4.6.5",
            "coredns": "1.12.1-bp156.4.6.5"
        }
    ]
}