CVE-2026-26018: CoreDNS Loop Detection Denial of Service Vulnerability

March 6, 2026

A Denial of Service vulnerability exists in CoreDNS’s loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable pseudo-random number generator (PRNG) for generating a secret query name, combined with a fatal error handler that terminates the entire process.

References

github.com/advisories/GHSA-h75p-j8xm-m278
github.com/coredns/coredns
github.com/coredns/coredns/releases/tag/v1.14.2
github.com/coredns/coredns/security/advisories/GHSA-h75p-j8xm-m278
nvd.nist.gov/vuln/detail/CVE-2026-26018

Code Behaviors & Features

Detect and mitigate CVE-2026-26018 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →