Key Information CVE: CVE-2025-13878 Title: Malformed BRID/HHIT records can cause named to terminate unexpectedly Document version: 2.0 Posting date: 21 January 2026 Program impacted: BIND 9 Versions affected: BIND: - 9.18.40 -> 9.18.43 - 9.20.13 -> 9.20.17 - 9.21.12 -> 9.21.16 BIND Supported Preview Edition: - 9.18.40-S1 -> 9.18.43-S1 - 9.20.13-S1 -> 9.20.17-S1 Severity: High Impact: An attacker can cause named to crash by sending a request with a corrupt or malicious record. Affected by this vulnerability: - Authoritative servers - Resolvers CVSS Score: 7.5 CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Workarounds: No workarounds known. Active exploits: We are not aware of any active exploits. Solution: Upgrade to the patched release most closely related to your current version of BIND 9: - 9.18.44 - 9.20.18 - 9.21.17 BIND Supported Preview Edition: - 9.18.44-S1 - 9.20.18-S1 Acknowledgments: ISC would like to thank Vlatko Kosturjak from Marlink Cyber for bringing this vulnerability to our attention.