AZL-75074 CVE-2025-13878 affecting package bind for versions less than 9.20.18-1

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...

CVE-2025-13878

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...

CVE-2025-13878

CVE-2025-13878 affects BIND 9.18.x (9.18.40–9.18.43 and 9.18.40-S1–9.18.43-S1), 9.20.x (9.20.13–9.20.17 and 9.20.13-S1–9.20.17-S1), and 9.21.x (9.21.12–9.21.16 and 9.21.12-S1–9.21.16-S1). The issue arises from malformed BRID/HHIT records causing named to terminate unexpectedly. Public advisories ...

CVE-2025-13878 Malformed BRID/HHIT records can cause named to terminate unexpectedly

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...

CVE-2025-13878 Malformed BRID/HHIT records can cause named to terminate unexpectedly

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...

CVE-2025-13878

Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1...

ROS-20260121-73-0013

A vulnerability in the function fmidibind component of the function/fmidi.c component of the Linux kernel is related to access to an uninitialized pointer. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Linux Distros Unpatched Vulnerability : CVE-2025-13878

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Malformed BRID/HHIT records can cause named to terminate unexpectedly. This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17,...

Slackware Linux 15.0 / current bind Vulnerability (SSA:2026-021-01)

The version of bind installed on the remote host is prior to 9.18.44 / 9.20.18. It is, therefore, affected by a vulnerability as referenced in the SSA:2026-021-01 advisory. New bind packages are available for Slackware 15.0 and -current to fix security issues. Tenable has extracted the preceding...

MiracleLinux 8 : bind-9.11.36-3.el8 (AXSA:2022-3460:02)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3460:02 advisory. bind: Lame cache can be abused to severely degrade resolver performance CVE-2021-25219 Tenable has extracted the preceding description block directly from th...

MiracleLinux 9 : unbound-1.16.2-3.el9_3.1 (AXSA:2024-7557:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7557:02 advisory. bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resourc...

MiracleLinux 4 : bind-9.8.2-0.68.7.0.1.rc1.AXS4 (AXSA:2020-134:05)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-134:05 advisory. bind: BIND does not sufficiently limit the number of fetches performed when processing referrals CVE-2020-8616 bind: A logic error in code which chec...

MiracleLinux 7 : bind-dyndb-ldap-11.1-7.el7.1, bind-9.11.4-26.P2.16.0.1.el7.AXS7, dhcp-4.2.5-83.2.0.1.el7.AXS7 (AXSA:2024-8142:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8142:01 advisory. bind: KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources...

ROS-20260120-7313

A vulnerability in the genelinkbind function drivers/net/usb/gl620a.c of the Linux operating system kernel is related to resource management errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

MiracleLinux 8 : bind-9.11.36-14.el8, dhcp-4.3.6-50.el8 (AXSA:2024-8332:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8332:03 advisory. bind9: Parsing large DNS messages may cause excessive CPU load CVE-2023-4408 bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator...

MiracleLinux 8 : bind-9.11.36-3.el8.1 (AXSA:2022-3874:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3874:03 advisory. bind: memory leak in ECDSA DNSSEC verification code CVE-2022-38177 bind: memory leaks in EdDSA DNSSEC verification code CVE-2022-38178 Tenable has...

MiracleLinux 8 : bind-9.11.36-8.el8.1 (AXSA:2023-6230:07)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6230:07 advisory. bind: named's configured cache size limit can be significantly exceeded CVE-2023-2828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : bind-9.16.23-11.el9.1 (AXSA:2023-6228:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6228:06 advisory. bind: named's configured cache size limit can be significantly exceeded CVE-2023-2828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : bind-9.11.4-26.P2.14.0.1.el7.AXS7 (AXSA:2023-6247:08)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6247:08 advisory. bind: named's configured cache size limit can be significantly exceeded CVE-2023-2828 Tenable has extracted the preceding description block directly from the...

MiracleLinux 9 : bind-dyndb-ldap-11.9-10.el9_4.ML.1, bind-9.16.23-18.el9_4.6 (AXSA:2024-8655:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8655:03 advisory. bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam CVE-2024-1737 bind9: bind: SIG0 can be used to exhaust...