Security: Critical vulnerabilities in k8s-dns-node-cache 1.26.7

### Summary
k8s-dns-node-cache 1.26.7 (in Helm chart 2.7.0) contains 4 CRITICAL vulnerabilities.

### Vulnerabilities
- **CVE-2025-15467** (OpenSSL RCE/DoS): libssl3 3.0.17 → 3.0.18
- **CVE-2025-68121** (Go crypto/tls): stdlib v1.24.8 → 1.24.13+
- **CVE-2026-33186** (gRPC authz bypass): google.golang.org/grpc v1.75.1 → 1.79.3

**Scanner:** `Trivy v0.58` | **Image:** `registry.k8s.io/dns/k8s-dns-node-cache:1.26.7`

### Action
Update appVersion once upstream dns is fixed with security issues.

### Related
Tracking upstream: https://github.com/kubernetes/dns/issues/754

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security: Critical vulnerabilities in k8s-dns-node-cache 1.26.7 #786

Summary

Vulnerabilities

Action

Related

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Security: Critical vulnerabilities in k8s-dns-node-cache 1.26.7 #786

Description

Summary

Vulnerabilities

Action

Related

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions