Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 42 BIND Important Security Risk CVE-2025-13878 Update Notification

fedora
Calendar Grey February 7, 2026
Dist Fedora Esm H88
Update for Fedora 42 addressing important security fixes for BIND and potential denial of service risks.
Update to 9.18.44 (rhbz#2431609) Security Fixes: Fix incorrect length checks for BRID and HHIT records

Summary

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. BIND includes a DNS server (named),

which resolves host names to IP addresses; a resolver library

(routines for applications to use when interfacing with DNS); and

tools for verifying that the DNS server is operating properly.

Update Information:

Update to 9.18.44 (rhbz#2431609) Security Fixes: Fix incorrect length checks for BRID and HHIT records. (CVE-2025-13878) Bug Fixes: Allow glue in delegations with QTYPE=ANY. Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to be invalid. https://downloads.isc.org/isc/bind9/9.18.44/doc/arm/html/notes.html#notes-for- bind-9-18-44

Topics%20covered

Topics Covered

security advisory denial of service fedora bind important cve-2025-13878

Change Log

* Thu Jan 22 2026 Petr Men\u0161k - 32:9.18.44-1 - Update to 9.18.44 (rhbz#2431609)

References


[ 1 ] Bug #2431609 - bind-9.18.44 is available https://bugzilla.redhat.com/show_bug.cgi?id=2431609 [ 2 ] Bug #2431922 - CVE-2025-13878 bind: bind: Denial of Service via corrupt or malicious record [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2431922

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-34c921d252' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: bind
Product: Fedora 42
Version: 9.18.44
Release: 1.fc42
URL: https://www.isc.org/bind/
Summary: The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server

Topics%20covered

Topics Covered

security advisory denial of service fedora bind important cve-2025-13878

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here