CVE-2025-13878

Summary

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.

Affected Software

VendorProductVersion RangeStatus
ISCBIND 99.18.40 <= 9.18.43affected
ISCBIND 99.20.13 <= 9.20.17affected
ISCBIND 99.21.12 <= 9.21.16affected
ISCBIND 99.18.40-S1 <= 9.18.43-S1affected
ISCBIND 99.20.13-S1 <= 9.20.17-S1affected

Weaknesses

  • CWE-617: CWE-617 Reachable Assertion

Workarounds

No workarounds known.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

CVE Program Container

Additional References

bind: bind: Denial of Service via corrupt or malicious record

Additional References

References