coredns v1.9.3 版本更新介绍

发布日期: 2022-05-27
版本号: v1.9.3

本次CoreDNS版本更新主要针对安全漏洞修复，包括CVE-2022-27191和CVE-2022-28948的修复，同时新增多项功能改进和问题修复。安全更新涉及升级gopkg.in/yaml.v3和golang.org/x/crypto依赖库以解决漏洞。功能改进涵盖多个插件：ACL插件新增区域信息解析检查，DNStap插件支持FQDN格式的TCP端点配置，Errors插件增加崩溃恢复时记录堆栈跟踪的选项，Template插件优化了区域匹配失败时返回SERVFAIL的处理逻辑。该版本由Chris O’Haver等多位贡献者共同开发完成，版本号从v1.9.2升级至v1.9.3。

更新内容 （中文）

本次发布主要聚焦安全漏洞修复(CVE-2022-27191 和 CVE-2022-28948)，同时包含多项功能增强与缺陷修复

贡献者名单

Chris O’Haver lobshunter Naveen Radim Hatlapatka RetoHaslerMGB Tintin Yong Tang

重要变更

• core: 更新 gopkg.in/yaml.v3 以修复 CVE-2022-28948 (https://github.com/coredns/coredns/pull/5408)
• core: 更新 golang.org/x/crypto 以修复 CVE-2022-27191 (https://github.com/coredns/coredns/pull/5407)
• plugin/acl: 添加解析区域信息的检查 (https://github.com/coredns/coredns/pull/5387)
• plugin/dnstap: 支持 FQDN 格式的 TCP 端点 (https://github.com/coredns/coredns/pull/5377)
• plugin/errors: 新增 stacktrace 选项用于 panic 恢复时记录堆栈追踪 (https://github.com/coredns/coredns/pull/5392)
• plugin/template: 在区域匹配但正则表达式不匹配的情况下返回 SERVFAIL (https://github.com/coredns/coredns/pull/5180)

完整变更日志: https://github.com/coredns/coredns/compare/v1.9.2...v1.9.3

更新内容 （原始）

This is a release with a focus on security (CVE-2022-27191 and CVE-2022-28948) fixes. Additionally, several feature enhancements and bug fixes have been added.

Brought to You By

Chris O’Haver, lobshunter, Naveen, Radim Hatlapatka, RetoHaslerMGB, Tintin, Yong Tang

Noteworthy Changes

• core: update gopkg.in/yaml.v3 to fix CVE-2022-28948 (https://github.com/coredns/coredns/pull/5408)
• core: update golang.org/x/crypto to fix CVE-2022-27191 (https://github.com/coredns/coredns/pull/5407)
• plugin/acl: adding a check to parse out zone info (https://github.com/coredns/coredns/pull/5387)
• plugin/dnstap: support FQDN TCP endpoint (https://github.com/coredns/coredns/pull/5377)
• plugin/errors: add stacktrace option to log a stacktrace during panic recovery (https://github.com/coredns/coredns/pull/5392)
• plugin/template: return SERVFAIL for zone-match regex-no-match case (https://github.com/coredns/coredns/pull/5180)

Full Changelog: https://github.com/coredns/coredns/compare/v1.9.2...v1.9.3

下载链接

• coredns_1.9.3_darwin_amd64.tgz
• coredns_1.9.3_darwin_amd64.tgz.sha256
• coredns_1.9.3_linux_amd64.tgz
• coredns_1.9.3_linux_amd64.tgz.sha256
• coredns_1.9.3_linux_arm.tgz
• coredns_1.9.3_linux_arm.tgz.sha256
• coredns_1.9.3_linux_arm64.tgz
• coredns_1.9.3_linux_arm64.tgz.sha256
• coredns_1.9.3_linux_mips.tgz
• coredns_1.9.3_linux_mips.tgz.sha256
• coredns_1.9.3_linux_mips64le.tgz
• coredns_1.9.3_linux_mips64le.tgz.sha256
• coredns_1.9.3_linux_ppc64le.tgz
• coredns_1.9.3_linux_ppc64le.tgz.sha256
• coredns_1.9.3_linux_s390x.tgz
• coredns_1.9.3_linux_s390x.tgz.sha256
• coredns_1.9.3_windows_amd64.tgz
• coredns_1.9.3_windows_amd64.tgz.sha256