Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-13878 (GCVE-0-2025-13878)
Vulnerability from cvelistv5 – Published: 2026-01-21 14:43 – Updated: 2026-01-21 18:13
VLAI?
EPSS
Title
Malformed BRID/HHIT records can cause named to terminate unexpectedly
Summary
Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.
This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.
Severity ?
7.5 (High)
CWE
- CWE-617 - Reachable Assertion
Assigner
References
| URL | Tags | |
|---|---|---|
Impacted products
Credits
ISC would like to thank Vlatko Kosturjak from Marlink Cyber for bringing this vulnerability to our attention.
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-13878",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-21T14:57:50.807267Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-01-21T14:58:14.618Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2026-01-21T18:13:38.157Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2026/01/21/3"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "BIND 9",
"vendor": "ISC",
"versions": [
{
"lessThanOrEqual": "9.18.43",
"status": "affected",
"version": "9.18.40",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.20.17",
"status": "affected",
"version": "9.20.13",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.21.16",
"status": "affected",
"version": "9.21.12",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.18.43-S1",
"status": "affected",
"version": "9.18.40-S1",
"versionType": "custom"
},
{
"lessThanOrEqual": "9.20.17-S1",
"status": "affected",
"version": "9.20.13-S1",
"versionType": "custom"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"versionEndIncluding": "9.18.43",
"versionStartIncluding": "9.18.40",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"versionEndIncluding": "9.20.17",
"versionStartIncluding": "9.20.13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"versionEndIncluding": "9.21.16",
"versionStartIncluding": "9.21.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"versionEndIncluding": "9.18.43-S1",
"versionStartIncluding": "9.18.40-S1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*",
"versionEndIncluding": "9.20.17-S1",
"versionStartIncluding": "9.20.13-S1",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "ISC would like to thank Vlatko Kosturjak from Marlink Cyber for bringing this vulnerability to our attention."
}
],
"datePublic": "2026-01-21T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1."
}
],
"exploits": [
{
"lang": "en",
"value": "We are not aware of any active exploits."
}
],
"impacts": [
{
"descriptions": [
{
"lang": "en",
"value": "An attacker can cause `named` to crash by sending a request that results in a corrupt or malicious record."
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-617",
"description": "CWE-617 Reachable Assertion",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-01-21T14:43:27.260Z",
"orgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"shortName": "isc"
},
"references": [
{
"name": "CVE-2025-13878",
"tags": [
"vendor-advisory"
],
"url": "https://kb.isc.org/docs/cve-2025-13878"
},
{
"tags": [
"patch"
],
"url": "https://downloads.isc.org/isc/bind9/9.18.44"
},
{
"tags": [
"patch"
],
"url": "https://downloads.isc.org/isc/bind9/9.20.18"
},
{
"tags": [
"patch"
],
"url": "https://downloads.isc.org/isc/bind9/9.21.17"
}
],
"solutions": [
{
"lang": "en",
"value": "Upgrade to the patched release most closely related to your current version of BIND 9: 9.18.44, 9.20.18, 9.21.17, 9.18.44-S1, or 9.20.18-S1."
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Malformed BRID/HHIT records can cause named to terminate unexpectedly",
"workarounds": [
{
"lang": "en",
"value": "No workarounds known."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "404fd4d2-a609-4245-b543-2c944a302a22",
"assignerShortName": "isc",
"cveId": "CVE-2025-13878",
"datePublished": "2026-01-21T14:43:27.260Z",
"dateReserved": "2025-12-02T11:08:04.266Z",
"dateUpdated": "2026-01-21T18:13:38.157Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2025-13878\",\"sourceIdentifier\":\"security-officer@isc.org\",\"published\":\"2026-01-21T15:16:05.650\",\"lastModified\":\"2026-01-26T15:04:59.737\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-officer@isc.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-officer@isc.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-617\"}]}],\"references\":[{\"url\":\"https://downloads.isc.org/isc/bind9/9.18.44\",\"source\":\"security-officer@isc.org\"},{\"url\":\"https://downloads.isc.org/isc/bind9/9.20.18\",\"source\":\"security-officer@isc.org\"},{\"url\":\"https://downloads.isc.org/isc/bind9/9.21.17\",\"source\":\"security-officer@isc.org\"},{\"url\":\"https://kb.isc.org/docs/cve-2025-13878\",\"source\":\"security-officer@isc.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2026/01/21/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2026/01/21/3\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2026-01-21T18:13:38.157Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-13878\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-01-21T14:57:50.807267Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-01-21T14:58:00.482Z\"}}], \"cna\": {\"title\": \"Malformed BRID/HHIT records can cause named to terminate unexpectedly\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"value\": \"ISC would like to thank Vlatko Kosturjak from Marlink Cyber for bringing this vulnerability to our attention.\"}], \"impacts\": [{\"descriptions\": [{\"lang\": \"en\", \"value\": \"An attacker can cause `named` to crash by sending a request that results in a corrupt or malicious record.\"}]}], \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"ISC\", \"product\": \"BIND 9\", \"versions\": [{\"status\": \"affected\", \"version\": \"9.18.40\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.43\"}, {\"status\": \"affected\", \"version\": \"9.20.13\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.20.17\"}, {\"status\": \"affected\", \"version\": \"9.21.12\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.21.16\"}, {\"status\": \"affected\", \"version\": \"9.18.40-S1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.18.43-S1\"}, {\"status\": \"affected\", \"version\": \"9.20.13-S1\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"9.20.17-S1\"}], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"We are not aware of any active exploits.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Upgrade to the patched release most closely related to your current version of BIND 9: 9.18.44, 9.20.18, 9.21.17, 9.18.44-S1, or 9.20.18-S1.\"}], \"datePublic\": \"2026-01-21T00:00:00.000Z\", \"references\": [{\"url\": \"https://kb.isc.org/docs/cve-2025-13878\", \"name\": \"CVE-2025-13878\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://downloads.isc.org/isc/bind9/9.18.44\", \"tags\": [\"patch\"]}, {\"url\": \"https://downloads.isc.org/isc/bind9/9.20.18\", \"tags\": [\"patch\"]}, {\"url\": \"https://downloads.isc.org/isc/bind9/9.21.17\", \"tags\": [\"patch\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"No workarounds known.\"}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-617\", \"description\": \"CWE-617 Reachable Assertion\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndIncluding\": \"9.18.43\", \"versionStartIncluding\": \"9.18.40\"}, {\"criteria\": \"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndIncluding\": \"9.20.17\", \"versionStartIncluding\": \"9.20.13\"}, {\"criteria\": \"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndIncluding\": \"9.21.16\", \"versionStartIncluding\": \"9.21.12\"}, {\"criteria\": \"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndIncluding\": \"9.18.43-S1\", \"versionStartIncluding\": \"9.18.40-S1\"}, {\"criteria\": \"cpe:2.3:a:isc:bind:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndIncluding\": \"9.20.17-S1\", \"versionStartIncluding\": \"9.20.13-S1\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"404fd4d2-a609-4245-b543-2c944a302a22\", \"shortName\": \"isc\", \"dateUpdated\": \"2026-01-21T14:43:27.260Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-13878\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-21T18:13:38.157Z\", \"dateReserved\": \"2025-12-02T11:08:04.266Z\", \"assignerOrgId\": \"404fd4d2-a609-4245-b543-2c944a302a22\", \"datePublished\": \"2026-01-21T14:43:27.260Z\", \"assignerShortName\": \"isc\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
NCSC-2026-0038
Vulnerability from csaf_ncscnl - Published: 2026-01-23 08:54 - Updated: 2026-01-23 08:54Summary
Kwetsbaarheid verholpen in BIND 9
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
ICS heeft een kwetsbaarheid verholpen in BIND 9.
Interpretaties
De kwetsbaarheid bevindt zich in bepaalde versies van BIND 9, waar verkeerd gevormde BRID/HHIT-records kunnen leiden tot de onverwachte beëindiging van de `named`-service, die cruciaal is voor DNS-resolutie. Deze kwetsbaarheid stelt aanvallers in staat om de service te laten crashen door middel van speciaal vervaardigde verzoeken, wat resulteert in een denial-of-service en de beschikbaarheid van DNS-diensten beïnvloedt.
Oplossingen
ICS heeft updates uitgebracht om de kwetsbaarheid te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-617
Reachable Assertion
CWE-1286
Improper Validation of Syntactic Correctness of Input
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "ICS heeft een kwetsbaarheid verholpen in BIND 9.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheid bevindt zich in bepaalde versies van BIND 9, waar verkeerd gevormde BRID/HHIT-records kunnen leiden tot de onverwachte be\u00ebindiging van de `named`-service, die cruciaal is voor DNS-resolutie. Deze kwetsbaarheid stelt aanvallers in staat om de service te laten crashen door middel van speciaal vervaardigde verzoeken, wat resulteert in een denial-of-service en de beschikbaarheid van DNS-diensten be\u00efnvloedt.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "ICS heeft updates uitgebracht om de kwetsbaarheid te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Reachable Assertion",
"title": "CWE-617"
},
{
"category": "general",
"text": "Improper Validation of Syntactic Correctness of Input",
"title": "CWE-1286"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://kb.isc.org/docs/cve-2025-13878"
}
],
"title": "Kwetsbaarheid verholpen in BIND 9",
"tracking": {
"current_release_date": "2026-01-23T08:54:43.506215Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0038",
"initial_release_date": "2026-01-23T08:54:43.506215Z",
"revision_history": [
{
"date": "2026-01-23T08:54:43.506215Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "BIND 9"
}
],
"category": "vendor",
"name": "ISC"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13878",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"notes": [
{
"category": "other",
"text": "Reachable Assertion",
"title": "CWE-617"
},
{
"category": "other",
"text": "Improper Validation of Syntactic Correctness of Input",
"title": "CWE-1286"
},
{
"category": "description",
"text": "Malformed BRID/HHIT records in specific BIND 9 versions can cause the `named` service to crash, leading to a denial of service for DNS resolution.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-13878 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-13878.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2025-13878"
}
]
}
GHSA-P5QX-FWF5-Q388
Vulnerability from github – Published: 2026-01-21 15:31 – Updated: 2026-01-21 21:30
VLAI?
Details
Malformed BRID/HHIT records can cause named to terminate unexpectedly.
This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.
Severity ?
7.5 (High)
{
"affected": [],
"aliases": [
"CVE-2025-13878"
],
"database_specific": {
"cwe_ids": [
"CWE-617"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-01-21T15:16:05Z",
"severity": "HIGH"
},
"details": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.",
"id": "GHSA-p5qx-fwf5-q388",
"modified": "2026-01-21T21:30:29Z",
"published": "2026-01-21T15:31:16Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13878"
},
{
"type": "WEB",
"url": "https://downloads.isc.org/isc/bind9/9.18.44"
},
{
"type": "WEB",
"url": "https://downloads.isc.org/isc/bind9/9.20.18"
},
{
"type": "WEB",
"url": "https://downloads.isc.org/isc/bind9/9.21.17"
},
{
"type": "WEB",
"url": "https://kb.isc.org/docs/cve-2025-13878"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2026/01/21/3"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
FKIE_CVE-2025-13878
Vulnerability from fkie_nvd - Published: 2026-01-21 15:16 - Updated: 2026-01-26 15:04
Severity ?
Summary
Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.
This issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1."
}
],
"id": "CVE-2025-13878",
"lastModified": "2026-01-26T15:04:59.737",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "security-officer@isc.org",
"type": "Secondary"
}
]
},
"published": "2026-01-21T15:16:05.650",
"references": [
{
"source": "security-officer@isc.org",
"url": "https://downloads.isc.org/isc/bind9/9.18.44"
},
{
"source": "security-officer@isc.org",
"url": "https://downloads.isc.org/isc/bind9/9.20.18"
},
{
"source": "security-officer@isc.org",
"url": "https://downloads.isc.org/isc/bind9/9.21.17"
},
{
"source": "security-officer@isc.org",
"url": "https://kb.isc.org/docs/cve-2025-13878"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2026/01/21/3"
}
],
"sourceIdentifier": "security-officer@isc.org",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-617"
}
],
"source": "security-officer@isc.org",
"type": "Secondary"
}
]
}
OPENSUSE-SU-2026:10080-1
Vulnerability from csaf_opensuse - Published: 2026-01-22 00:00 - Updated: 2026-01-22 00:00Summary
bind-9.20.18-1.1 on GA media
Notes
Title of the patch
bind-9.20.18-1.1 on GA media
Description of the patch
These are all security issues fixed in the bind-9.20.18-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2026-10080
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "bind-9.20.18-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the bind-9.20.18-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10080",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10080-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13878 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13878/"
}
],
"title": "bind-9.20.18-1.1 on GA media",
"tracking": {
"current_release_date": "2026-01-22T00:00:00Z",
"generator": {
"date": "2026-01-22T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10080-1",
"initial_release_date": "2026-01-22T00:00:00Z",
"revision_history": [
{
"date": "2026-01-22T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-1.1.aarch64",
"product": {
"name": "bind-9.20.18-1.1.aarch64",
"product_id": "bind-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.18-1.1.aarch64",
"product": {
"name": "bind-doc-9.20.18-1.1.aarch64",
"product_id": "bind-doc-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-1.1.aarch64",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.aarch64",
"product_id": "bind-modules-bdbhpt-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-1.1.aarch64",
"product": {
"name": "bind-modules-generic-9.20.18-1.1.aarch64",
"product_id": "bind-modules-generic-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-1.1.aarch64",
"product": {
"name": "bind-modules-ldap-9.20.18-1.1.aarch64",
"product_id": "bind-modules-ldap-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-1.1.aarch64",
"product": {
"name": "bind-modules-mysql-9.20.18-1.1.aarch64",
"product_id": "bind-modules-mysql-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-1.1.aarch64",
"product": {
"name": "bind-modules-perl-9.20.18-1.1.aarch64",
"product_id": "bind-modules-perl-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-1.1.aarch64",
"product": {
"name": "bind-modules-sqlite3-9.20.18-1.1.aarch64",
"product_id": "bind-modules-sqlite3-9.20.18-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-1.1.aarch64",
"product": {
"name": "bind-utils-9.20.18-1.1.aarch64",
"product_id": "bind-utils-9.20.18-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-9.20.18-1.1.ppc64le",
"product_id": "bind-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-doc-9.20.18-1.1.ppc64le",
"product_id": "bind-doc-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.ppc64le",
"product_id": "bind-modules-bdbhpt-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-modules-generic-9.20.18-1.1.ppc64le",
"product_id": "bind-modules-generic-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-modules-ldap-9.20.18-1.1.ppc64le",
"product_id": "bind-modules-ldap-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-modules-mysql-9.20.18-1.1.ppc64le",
"product_id": "bind-modules-mysql-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-modules-perl-9.20.18-1.1.ppc64le",
"product_id": "bind-modules-perl-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-modules-sqlite3-9.20.18-1.1.ppc64le",
"product_id": "bind-modules-sqlite3-9.20.18-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-1.1.ppc64le",
"product": {
"name": "bind-utils-9.20.18-1.1.ppc64le",
"product_id": "bind-utils-9.20.18-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-1.1.s390x",
"product": {
"name": "bind-9.20.18-1.1.s390x",
"product_id": "bind-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.18-1.1.s390x",
"product": {
"name": "bind-doc-9.20.18-1.1.s390x",
"product_id": "bind-doc-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-1.1.s390x",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.s390x",
"product_id": "bind-modules-bdbhpt-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-1.1.s390x",
"product": {
"name": "bind-modules-generic-9.20.18-1.1.s390x",
"product_id": "bind-modules-generic-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-1.1.s390x",
"product": {
"name": "bind-modules-ldap-9.20.18-1.1.s390x",
"product_id": "bind-modules-ldap-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-1.1.s390x",
"product": {
"name": "bind-modules-mysql-9.20.18-1.1.s390x",
"product_id": "bind-modules-mysql-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-1.1.s390x",
"product": {
"name": "bind-modules-perl-9.20.18-1.1.s390x",
"product_id": "bind-modules-perl-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-1.1.s390x",
"product": {
"name": "bind-modules-sqlite3-9.20.18-1.1.s390x",
"product_id": "bind-modules-sqlite3-9.20.18-1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-1.1.s390x",
"product": {
"name": "bind-utils-9.20.18-1.1.s390x",
"product_id": "bind-utils-9.20.18-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-1.1.x86_64",
"product": {
"name": "bind-9.20.18-1.1.x86_64",
"product_id": "bind-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-doc-9.20.18-1.1.x86_64",
"product": {
"name": "bind-doc-9.20.18-1.1.x86_64",
"product_id": "bind-doc-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-1.1.x86_64",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.x86_64",
"product_id": "bind-modules-bdbhpt-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-1.1.x86_64",
"product": {
"name": "bind-modules-generic-9.20.18-1.1.x86_64",
"product_id": "bind-modules-generic-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-1.1.x86_64",
"product": {
"name": "bind-modules-ldap-9.20.18-1.1.x86_64",
"product_id": "bind-modules-ldap-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-1.1.x86_64",
"product": {
"name": "bind-modules-mysql-9.20.18-1.1.x86_64",
"product_id": "bind-modules-mysql-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-1.1.x86_64",
"product": {
"name": "bind-modules-perl-9.20.18-1.1.x86_64",
"product_id": "bind-modules-perl-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-1.1.x86_64",
"product": {
"name": "bind-modules-sqlite3-9.20.18-1.1.x86_64",
"product_id": "bind-modules-sqlite3-9.20.18-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-1.1.x86_64",
"product": {
"name": "bind-utils-9.20.18-1.1.x86_64",
"product_id": "bind-utils-9.20.18-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.18-1.1.aarch64"
},
"product_reference": "bind-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.18-1.1.s390x"
},
"product_reference": "bind-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-9.20.18-1.1.x86_64"
},
"product_reference": "bind-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.18-1.1.aarch64"
},
"product_reference": "bind-doc-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-doc-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.18-1.1.s390x"
},
"product_reference": "bind-doc-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-doc-9.20.18-1.1.x86_64"
},
"product_reference": "bind-doc-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.aarch64"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.s390x"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.x86_64"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.aarch64"
},
"product_reference": "bind-modules-generic-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-modules-generic-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.s390x"
},
"product_reference": "bind-modules-generic-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.x86_64"
},
"product_reference": "bind-modules-generic-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.aarch64"
},
"product_reference": "bind-modules-ldap-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-modules-ldap-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.s390x"
},
"product_reference": "bind-modules-ldap-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.x86_64"
},
"product_reference": "bind-modules-ldap-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.aarch64"
},
"product_reference": "bind-modules-mysql-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-modules-mysql-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.s390x"
},
"product_reference": "bind-modules-mysql-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.x86_64"
},
"product_reference": "bind-modules-mysql-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.aarch64"
},
"product_reference": "bind-modules-perl-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-modules-perl-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.s390x"
},
"product_reference": "bind-modules-perl-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.x86_64"
},
"product_reference": "bind-modules-perl-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.aarch64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-modules-sqlite3-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.s390x"
},
"product_reference": "bind-modules-sqlite3-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.x86_64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.18-1.1.aarch64"
},
"product_reference": "bind-utils-9.20.18-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.18-1.1.ppc64le"
},
"product_reference": "bind-utils-9.20.18-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.18-1.1.s390x"
},
"product_reference": "bind-utils-9.20.18-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:bind-utils-9.20.18-1.1.x86_64"
},
"product_reference": "bind-utils-9.20.18-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13878"
}
],
"notes": [
{
"category": "general",
"text": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:bind-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13878",
"url": "https://www.suse.com/security/cve/CVE-2025-13878"
},
{
"category": "external",
"summary": "SUSE Bug 1256997 for CVE-2025-13878",
"url": "https://bugzilla.suse.com/1256997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:bind-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:bind-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-doc-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-bdbhpt-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-generic-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-ldap-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-mysql-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-perl-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-modules-sqlite3-9.20.18-1.1.x86_64",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.aarch64",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.ppc64le",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.s390x",
"openSUSE Tumbleweed:bind-utils-9.20.18-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-13878"
}
]
}
OPENSUSE-SU-2026:20091-1
Vulnerability from csaf_opensuse - Published: 2026-01-22 16:45 - Updated: 2026-01-22 16:45Summary
Security update for bind
Notes
Title of the patch
Security update for bind
Description of the patch
This update for bind fixes the following issues:
Upgrade to release 9.20.18:
- CVE-2025-13878: Fixed incorrect length checks for BRID and HHIT records (bsc#1256997)
Feature Changes:
* Add more information to the rndc recursing output about
fetches.
* Reduce the number of outgoing queries.
* Provide more information when memory allocation fails.
Bug Fixes:
* Make DNSSEC key rollovers more robust.
* Fix a catalog zone issue, where member zones could fail to
load.
* Allow glue in delegations with QTYPE=ANY.
* Fix slow speed when signing a large delegation zone with NSEC3
opt-out.
* Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to
be invalid.
* Fix a possible catalog zone issue during reconfiguration.
* Fix the charts in the statistics channel.
* Adding NSEC3 opt-out records could leave invalid records in
chain.
* Fix spurious timeouts while resolving names.
* Fix bug where zone switches from NSEC3 to NSEC after
retransfer.
* AMTRELAY type 0 presentation format handling was wrong.
* Fix parsing bug in remote-servers with key or TLS.
* Fix DoT reconfigure/reload bug in the resolver.
* Skip unsupported algorithms when looking for a signing key.
* Fix dnssec-keygen key collision checking for KEY RRtype keys.
* dnssec-verify now uses exit code 1 when failing due to illegal
options.
* Prevent assertion failures of dig when a server is specified
before the -b option.
* Skip buffer allocations if not logging.
Patchnames
openSUSE-Leap-16.0-180
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bind",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bind fixes the following issues:\n\nUpgrade to release 9.20.18:\n\n- CVE-2025-13878: Fixed incorrect length checks for BRID and HHIT records (bsc#1256997)\n\n Feature Changes:\n * Add more information to the rndc recursing output about\n fetches.\n * Reduce the number of outgoing queries.\n * Provide more information when memory allocation fails.\n\n Bug Fixes:\n * Make DNSSEC key rollovers more robust.\n * Fix a catalog zone issue, where member zones could fail to\n load.\n * Allow glue in delegations with QTYPE=ANY.\n * Fix slow speed when signing a large delegation zone with NSEC3\n opt-out.\n * Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to\n be invalid.\n * Fix a possible catalog zone issue during reconfiguration.\n * Fix the charts in the statistics channel.\n * Adding NSEC3 opt-out records could leave invalid records in\n chain.\n * Fix spurious timeouts while resolving names.\n * Fix bug where zone switches from NSEC3 to NSEC after\n retransfer.\n * AMTRELAY type 0 presentation format handling was wrong.\n * Fix parsing bug in remote-servers with key or TLS.\n * Fix DoT reconfigure/reload bug in the resolver.\n * Skip unsupported algorithms when looking for a signing key.\n * Fix dnssec-keygen key collision checking for KEY RRtype keys.\n * dnssec-verify now uses exit code 1 when failing due to illegal\n options.\n * Prevent assertion failures of dig when a server is specified\n before the -b option.\n * Skip buffer allocations if not logging.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-180",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20091-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1256997",
"url": "https://bugzilla.suse.com/1256997"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13878 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13878/"
}
],
"title": "Security update for bind",
"tracking": {
"current_release_date": "2026-01-22T16:45:35Z",
"generator": {
"date": "2026-01-22T16:45:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20091-1",
"initial_release_date": "2026-01-22T16:45:35Z",
"revision_history": [
{
"date": "2026-01-22T16:45:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-9.20.18-160000.1.1.aarch64",
"product_id": "bind-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.aarch64",
"product_id": "bind-utils-9.20.18-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-doc-9.20.18-160000.1.1.noarch",
"product": {
"name": "bind-doc-9.20.18-160000.1.1.noarch",
"product_id": "bind-doc-9.20.18-160000.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-utils-9.20.18-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-9.20.18-160000.1.1.s390x",
"product_id": "bind-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-bdbhpt-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.s390x",
"product_id": "bind-utils-9.20.18-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-9.20.18-160000.1.1.x86_64",
"product_id": "bind-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.x86_64",
"product_id": "bind-utils-9.20.18-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-160000.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-doc-9.20.18-160000.1.1.noarch"
},
"product_reference": "bind-doc-9.20.18-160000.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13878"
}
],
"notes": [
{
"category": "general",
"text": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13878",
"url": "https://www.suse.com/security/cve/CVE-2025-13878"
},
{
"category": "external",
"summary": "SUSE Bug 1256997 for CVE-2025-13878",
"url": "https://bugzilla.suse.com/1256997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-bdbhpt-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"openSUSE Leap 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T16:45:35Z",
"details": "important"
}
],
"title": "CVE-2025-13878"
}
]
}
SUSE-SU-2026:0348-1
Vulnerability from csaf_suse - Published: 2026-01-30 11:17 - Updated: 2026-01-30 11:17Summary
Security update for bind
Notes
Title of the patch
Security update for bind
Description of the patch
This update for bind fixes the following issues:
Upgrade to release 9.20.18:
- CVE-2025-13878: Fixed incorrect length checks for BRID and HHIT records (bsc#1256997)
Feature Changes:
* Add more information to the rndc recursing output about
fetches.
* Reduce the number of outgoing queries.
* Provide more information when memory allocation fails.
Bug Fixes:
* Make DNSSEC key rollovers more robust.
* Fix a catalog zone issue, where member zones could fail to
load.
* Allow glue in delegations with QTYPE=ANY.
* Fix slow speed when signing a large delegation zone with NSEC3
opt-out.
* Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to
be invalid.
* Fix a possible catalog zone issue during reconfiguration.
* Fix the charts in the statistics channel.
* Adding NSEC3 opt-out records could leave invalid records in
chain.
* Fix spurious timeouts while resolving names.
* Fix bug where zone switches from NSEC3 to NSEC after
retransfer.
* AMTRELAY type 0 presentation format handling was wrong.
* Fix parsing bug in remote-servers with key or TLS.
* Fix DoT reconfigure/reload bug in the resolver.
* Skip unsupported algorithms when looking for a signing key.
* Fix dnssec-keygen key collision checking for KEY RRtype keys.
* dnssec-verify now uses exit code 1 when failing due to illegal
options.
* Prevent assertion failures of dig when a server is specified
before the -b option.
* Skip buffer allocations if not logging.
Patchnames
SUSE-2026-348,SUSE-SLE-Module-Basesystem-15-SP7-2026-348,SUSE-SLE-Module-Server-Applications-15-SP7-2026-348
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bind",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bind fixes the following issues:\n\nUpgrade to release 9.20.18:\n\n- CVE-2025-13878: Fixed incorrect length checks for BRID and HHIT records (bsc#1256997)\n\n Feature Changes:\n * Add more information to the rndc recursing output about\n fetches.\n * Reduce the number of outgoing queries.\n * Provide more information when memory allocation fails.\n\n Bug Fixes:\n * Make DNSSEC key rollovers more robust.\n * Fix a catalog zone issue, where member zones could fail to\n load.\n * Allow glue in delegations with QTYPE=ANY.\n * Fix slow speed when signing a large delegation zone with NSEC3\n opt-out.\n * Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to\n be invalid.\n * Fix a possible catalog zone issue during reconfiguration.\n * Fix the charts in the statistics channel.\n * Adding NSEC3 opt-out records could leave invalid records in\n chain.\n * Fix spurious timeouts while resolving names.\n * Fix bug where zone switches from NSEC3 to NSEC after\n retransfer.\n * AMTRELAY type 0 presentation format handling was wrong.\n * Fix parsing bug in remote-servers with key or TLS.\n * Fix DoT reconfigure/reload bug in the resolver.\n * Skip unsupported algorithms when looking for a signing key.\n * Fix dnssec-keygen key collision checking for KEY RRtype keys.\n * dnssec-verify now uses exit code 1 when failing due to illegal\n options.\n * Prevent assertion failures of dig when a server is specified\n before the -b option.\n * Skip buffer allocations if not logging.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-348,SUSE-SLE-Module-Basesystem-15-SP7-2026-348,SUSE-SLE-Module-Server-Applications-15-SP7-2026-348",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0348-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0348-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260348-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0348-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023995.html"
},
{
"category": "self",
"summary": "SUSE Bug 1256997",
"url": "https://bugzilla.suse.com/1256997"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13878 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13878/"
}
],
"title": "Security update for bind",
"tracking": {
"current_release_date": "2026-01-30T11:17:07Z",
"generator": {
"date": "2026-01-30T11:17:07Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0348-1",
"initial_release_date": "2026-01-30T11:17:07Z",
"revision_history": [
{
"date": "2026-01-30T11:17:07Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-150700.3.15.1.aarch64",
"product": {
"name": "bind-9.20.18-150700.3.15.1.aarch64",
"product_id": "bind-9.20.18-150700.3.15.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-150700.3.15.1.aarch64",
"product": {
"name": "bind-utils-9.20.18-150700.3.15.1.aarch64",
"product_id": "bind-utils-9.20.18-150700.3.15.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-150700.3.15.1.i586",
"product": {
"name": "bind-9.20.18-150700.3.15.1.i586",
"product_id": "bind-9.20.18-150700.3.15.1.i586"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-150700.3.15.1.i586",
"product": {
"name": "bind-utils-9.20.18-150700.3.15.1.i586",
"product_id": "bind-utils-9.20.18-150700.3.15.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-doc-9.20.18-150700.3.15.1.noarch",
"product": {
"name": "bind-doc-9.20.18-150700.3.15.1.noarch",
"product_id": "bind-doc-9.20.18-150700.3.15.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-150700.3.15.1.ppc64le",
"product": {
"name": "bind-9.20.18-150700.3.15.1.ppc64le",
"product_id": "bind-9.20.18-150700.3.15.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-150700.3.15.1.ppc64le",
"product": {
"name": "bind-utils-9.20.18-150700.3.15.1.ppc64le",
"product_id": "bind-utils-9.20.18-150700.3.15.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-150700.3.15.1.s390x",
"product": {
"name": "bind-9.20.18-150700.3.15.1.s390x",
"product_id": "bind-9.20.18-150700.3.15.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-150700.3.15.1.s390x",
"product": {
"name": "bind-utils-9.20.18-150700.3.15.1.s390x",
"product_id": "bind-utils-9.20.18-150700.3.15.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-150700.3.15.1.x86_64",
"product": {
"name": "bind-9.20.18-150700.3.15.1.x86_64",
"product_id": "bind-9.20.18-150700.3.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-150700.3.15.1.x86_64",
"product": {
"name": "bind-utils-9.20.18-150700.3.15.1.x86_64",
"product_id": "bind-utils-9.20.18-150700.3.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-150700.3.15.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.aarch64"
},
"product_reference": "bind-utils-9.20.18-150700.3.15.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-150700.3.15.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.ppc64le"
},
"product_reference": "bind-utils-9.20.18-150700.3.15.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-150700.3.15.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.s390x"
},
"product_reference": "bind-utils-9.20.18-150700.3.15.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-150700.3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.x86_64"
},
"product_reference": "bind-utils-9.20.18-150700.3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-150700.3.15.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.aarch64"
},
"product_reference": "bind-9.20.18-150700.3.15.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-150700.3.15.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.ppc64le"
},
"product_reference": "bind-9.20.18-150700.3.15.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-150700.3.15.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.s390x"
},
"product_reference": "bind-9.20.18-150700.3.15.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-150700.3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.x86_64"
},
"product_reference": "bind-9.20.18-150700.3.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-150700.3.15.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-doc-9.20.18-150700.3.15.1.noarch"
},
"product_reference": "bind-doc-9.20.18-150700.3.15.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13878"
}
],
"notes": [
{
"category": "general",
"text": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-doc-9.20.18-150700.3.15.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13878",
"url": "https://www.suse.com/security/cve/CVE-2025-13878"
},
{
"category": "external",
"summary": "SUSE Bug 1256997 for CVE-2025-13878",
"url": "https://bugzilla.suse.com/1256997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-doc-9.20.18-150700.3.15.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:bind-utils-9.20.18-150700.3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-9.20.18-150700.3.15.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP7:bind-doc-9.20.18-150700.3.15.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-30T11:17:07Z",
"details": "important"
}
],
"title": "CVE-2025-13878"
}
]
}
SUSE-SU-2026:20135-1
Vulnerability from csaf_suse - Published: 2026-01-22 16:50 - Updated: 2026-01-22 16:50Summary
Security update for bind
Notes
Title of the patch
Security update for bind
Description of the patch
This update for bind fixes the following issues:
Upgrade to release 9.20.18:
- CVE-2025-13878: Fixed incorrect length checks for BRID and HHIT records (bsc#1256997)
Feature Changes:
* Add more information to the rndc recursing output about
fetches.
* Reduce the number of outgoing queries.
* Provide more information when memory allocation fails.
Bug Fixes:
* Make DNSSEC key rollovers more robust.
* Fix a catalog zone issue, where member zones could fail to
load.
* Allow glue in delegations with QTYPE=ANY.
* Fix slow speed when signing a large delegation zone with NSEC3
opt-out.
* Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to
be invalid.
* Fix a possible catalog zone issue during reconfiguration.
* Fix the charts in the statistics channel.
* Adding NSEC3 opt-out records could leave invalid records in
chain.
* Fix spurious timeouts while resolving names.
* Fix bug where zone switches from NSEC3 to NSEC after
retransfer.
* AMTRELAY type 0 presentation format handling was wrong.
* Fix parsing bug in remote-servers with key or TLS.
* Fix DoT reconfigure/reload bug in the resolver.
* Skip unsupported algorithms when looking for a signing key.
* Fix dnssec-keygen key collision checking for KEY RRtype keys.
* dnssec-verify now uses exit code 1 when failing due to illegal
options.
* Prevent assertion failures of dig when a server is specified
before the -b option.
* Skip buffer allocations if not logging.
Patchnames
SUSE-SLES-16.0-180
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for bind",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for bind fixes the following issues:\n\nUpgrade to release 9.20.18:\n\n- CVE-2025-13878: Fixed incorrect length checks for BRID and HHIT records (bsc#1256997)\n\n Feature Changes:\n * Add more information to the rndc recursing output about\n fetches.\n * Reduce the number of outgoing queries.\n * Provide more information when memory allocation fails.\n\n Bug Fixes:\n * Make DNSSEC key rollovers more robust.\n * Fix a catalog zone issue, where member zones could fail to\n load.\n * Allow glue in delegations with QTYPE=ANY.\n * Fix slow speed when signing a large delegation zone with NSEC3\n opt-out.\n * Reconfiguring an NSEC3 opt-out zone to NSEC caused the zone to\n be invalid.\n * Fix a possible catalog zone issue during reconfiguration.\n * Fix the charts in the statistics channel.\n * Adding NSEC3 opt-out records could leave invalid records in\n chain.\n * Fix spurious timeouts while resolving names.\n * Fix bug where zone switches from NSEC3 to NSEC after\n retransfer.\n * AMTRELAY type 0 presentation format handling was wrong.\n * Fix parsing bug in remote-servers with key or TLS.\n * Fix DoT reconfigure/reload bug in the resolver.\n * Skip unsupported algorithms when looking for a signing key.\n * Fix dnssec-keygen key collision checking for KEY RRtype keys.\n * dnssec-verify now uses exit code 1 when failing due to illegal\n options.\n * Prevent assertion failures of dig when a server is specified\n before the -b option.\n * Skip buffer allocations if not logging.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-180",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20135-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20135-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620135-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20135-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-January/043736.html"
},
{
"category": "self",
"summary": "SUSE Bug 1256997",
"url": "https://bugzilla.suse.com/1256997"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13878 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13878/"
}
],
"title": "Security update for bind",
"tracking": {
"current_release_date": "2026-01-22T16:50:15Z",
"generator": {
"date": "2026-01-22T16:50:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20135-1",
"initial_release_date": "2026-01-22T16:50:15Z",
"revision_history": [
{
"date": "2026-01-22T16:50:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-9.20.18-160000.1.1.aarch64",
"product_id": "bind-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.aarch64",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.aarch64",
"product_id": "bind-utils-9.20.18-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-doc-9.20.18-160000.1.1.noarch",
"product": {
"name": "bind-doc-9.20.18-160000.1.1.noarch",
"product_id": "bind-doc-9.20.18-160000.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.ppc64le",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.ppc64le",
"product_id": "bind-utils-9.20.18-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-9.20.18-160000.1.1.s390x",
"product_id": "bind-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.s390x",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.s390x",
"product_id": "bind-utils-9.20.18-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "bind-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-9.20.18-160000.1.1.x86_64",
"product_id": "bind-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-generic-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-ldap-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-mysql-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-perl-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"product_id": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "bind-utils-9.20.18-160000.1.1.x86_64",
"product": {
"name": "bind-utils-9.20.18-160000.1.1.x86_64",
"product_id": "bind-utils-9.20.18-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-160000.1.1.noarch as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-doc-9.20.18-160000.1.1.noarch"
},
"product_reference": "bind-doc-9.20.18-160000.1.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-doc-9.20.18-160000.1.1.noarch as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-doc-9.20.18-160000.1.1.noarch"
},
"product_reference": "bind-doc-9.20.18-160000.1.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-generic-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-generic-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-ldap-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-mysql-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-perl-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-perl-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.aarch64"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.ppc64le"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.s390x"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bind-utils-9.20.18-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
},
"product_reference": "bind-utils-9.20.18-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13878",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13878"
}
],
"notes": [
{
"category": "general",
"text": "Malformed BRID/HHIT records can cause `named` to terminate unexpectedly.\nThis issue affects BIND 9 versions 9.18.40 through 9.18.43, 9.20.13 through 9.20.17, 9.21.12 through 9.21.16, 9.18.40-S1 through 9.18.43-S1, and 9.20.13-S1 through 9.20.17-S1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13878",
"url": "https://www.suse.com/security/cve/CVE-2025-13878"
},
{
"category": "external",
"summary": "SUSE Bug 1256997 for CVE-2025-13878",
"url": "https://bugzilla.suse.com/1256997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:bind-utils-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-doc-9.20.18-160000.1.1.noarch",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-generic-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-ldap-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-mysql-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-perl-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-modules-sqlite3-9.20.18-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:bind-utils-9.20.18-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-22T16:50:15Z",
"details": "important"
}
],
"title": "CVE-2025-13878"
}
]
}
WID-SEC-W-2026-0188
Vulnerability from csaf_certbund - Published: 2026-01-21 23:00 - Updated: 2026-01-28 23:00Summary
Internet Systems Consortium BIND: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Internet Systems Consortium BIND ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "BIND (Berkeley Internet Name Domain) ist ein Open-Source-Softwarepaket, das einen Domain-Name-System-Server implementiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Internet Systems Consortium BIND ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0188 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0188.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0188 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0188"
},
{
"category": "external",
"summary": "ISC BIND Security Advisory CVE-2025-13878 vom 2026-01-21",
"url": "https://kb.isc.org/docs/cve-2025-13878"
},
{
"category": "external",
"summary": "BIND 9.18.44 Release vom 2026-01-21",
"url": "https://downloads.isc.org/isc/bind9/9.18.44/"
},
{
"category": "external",
"summary": "BIND 9.20.18 Release vom 2026-01-21",
"url": "https://downloads.isc.org/isc/bind9/9.20.18/"
},
{
"category": "external",
"summary": "BIND 9.21.17 Release vom 2026-01-21",
"url": "https://downloads.isc.org/isc/bind9/9.21.17/"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-D8979B7A9C vom 2026-01-22",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-d8979b7a9c"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-B31C8D8E83 vom 2026-01-22",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-b31c8d8e83"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-925E7CCE85 vom 2026-01-22",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-925e7cce85"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-6107 vom 2026-01-22",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00015.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-567FF6C687 vom 2026-01-22",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-567ff6c687"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2026-34C921D252 vom 2026-01-22",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-34c921d252"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:10080-1 vom 2026-01-23",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7ROBXH6XB6MB2J4NX6PQ42RXZZDQWFOG/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20135-1 vom 2026-01-28",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023955.html"
}
],
"source_lang": "en-US",
"title": "Internet Systems Consortium BIND: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2026-01-28T23:00:00.000+00:00",
"generator": {
"date": "2026-01-29T07:51:13.819+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-0188",
"initial_release_date": "2026-01-21T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-01-21T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-01-22T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Fedora und Debian aufgenommen"
},
{
"date": "2026-01-25T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2026-01-28T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c9.18.44",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.18.44",
"product_id": "T050250"
}
},
{
"category": "product_version",
"name": "9.18.44",
"product": {
"name": "Internet Systems Consortium BIND 9.18.44",
"product_id": "T050250-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.18.44"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.20.18",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.20.18",
"product_id": "T050251"
}
},
{
"category": "product_version",
"name": "9.20.18",
"product": {
"name": "Internet Systems Consortium BIND 9.20.18",
"product_id": "T050251-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.20.18"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.21.17",
"product": {
"name": "Internet Systems Consortium BIND \u003c9.21.17",
"product_id": "T050252"
}
},
{
"category": "product_version",
"name": "9.21.17",
"product": {
"name": "Internet Systems Consortium BIND 9.21.17",
"product_id": "T050252-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:isc:bind:9.21.17"
}
}
}
],
"category": "product_name",
"name": "BIND"
}
],
"category": "vendor",
"name": "Internet Systems Consortium"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13878",
"product_status": {
"known_affected": [
"T050251",
"T050250",
"2951",
"T002207",
"T027843",
"T050252",
"74185"
]
},
"release_date": "2026-01-21T23:00:00.000+00:00",
"title": "CVE-2025-13878"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…