Trail of Bits (https://trailofbits.com) 对 CoreDNS 进行了一次安全审查和威胁建模。
安全审查摘要中的引用
“审计发现了一个高严重性问题 (TOB-CDNS-8),涉及可导致缓存中毒攻击的 bug。大多数其他问题都是信息或低严重性的;其中包括几个由不足的数据验证导致的问题,特别是由各种函数处理的数据的假设,我们通过运行模糊测试套件而发现了这一点。大部分发现都与拒绝服务漏洞相关。”
该报告可在 Trail of Bits 在 GitHub 上发布的文章中找到:https://github.com/trailofbits/publications/blob/master/reviews/CoreDNS.pdf
目前,已开放以下 PR 来解决报告中提出的问题
- https://github.com/coredns/coredns/pull/5085 (TOB-CDNS-1)
- https://github.com/coredns/coredns/pull/5108 (TOB-CDNS-5)
- https://github.com/coredns/coredns/pull/5168 (TOB-CDNS-2)
- https://github.com/coredns/coredns/pull/5169 (TOB-CDNS-3)
- https://github.com/coredns/coredns/pull/5170 (TOB-CDNS-4)
- https://github.com/coredns/coredns/pull/5171 (TOB-CDNS-15)
- https://github.com/coredns/coredns/pull/5172 (TOB-CDNS-11)
- https://github.com/coredns/coredns/pull/5173 (TOB-CDNS-9)
- https://github.com/coredns/coredns/pull/5174 (TOB-CDNS-8)
- https://github.com/coredns/coredns/pull/5220 (TOB-CDNS-10)
- https://github.com/coredns/coredns/pull/5224 (TOB-CDNS-14)
- https://github.com/coredns/coredns/pull/5225 (TOB-CDNS-7)
- https://github.com/coredns/coredns/pull/5226 (TOB-CDNS-6)
- https://github.com/coredns/coredns/pull/5227 (TOB-CDNS-12)
- https://github.com/coredns/coredns/pull/5228 (TOB-CDNS-12)
- https://github.com/coredns/coredns/pull/5231 (TOB-CDNS-12)