Debian alert DSA-6107-1 (bind9)
| From: | Salvatore Bonaccorso <carnil@debian.org> | |
| To: | debian-security-announce@lists.debian.org | |
| Subject: | [SECURITY] [DSA 6107-1] bind9 security update | |
| Date: | Thu, 22 Jan 2026 20:08:13 +0000 | |
| Message-ID: | <E1vj0yT-001yK4-1k@seger.debian.org> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6107-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso January 22, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : bind9 CVE ID : CVE-2025-13878 Vlatko Kosturjak discovered that BIND, a DNS server implementation, does not properly handle malformed BRID/HHIT records, which may result in denial of service (named daemon crash). For the oldstable distribution (bookworm), this problem has been fixed in version 1:9.18.44-1~deb12u1. For the stable distribution (trixie), this problem has been fixed in version 1:9.20.18-1~deb13u1. We recommend that you upgrade your bind9 packages. For the detailed security status of bind9 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/bind9 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmlyg2NfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0RMjA/8DBG4roj1KPzW6ORnz3JpZCqLFFYqpLpFriKhxdv9dsT7tfd7BXQNn/7d OPxxu8Av0OGm2m8ed/PTqjpkucrHD76g0RfnBKZkq4BQoiVfsy2lsv9VQpxVWqTv zvumYSWUWMSaVuXjTSm2pzYFl7sflaVSr8JmwF8CUvYAnpQv+dtDrEZJOJogMKhJ B7iGxEnvr40XL+4S7h9Qh4qeGDTuZC1Sho02ORlhUZNltAOpsKIdBqYudWTbGXlR PyrTJMiIx2G9t1puEyHwBzM2vi03KI/ECt4HGPdjsCNH8nHC8BFhI7XG9kCjfa+y rdAQq9FJs/lTbaLohBywaUpvP0ns764rfgm4YwqErQn1wERUuarobVoYovLlLtnw 6hiRmOGw9jct+R9L8DziJ5aVvEBhoo5BrMo7A8QgtUIuqxFLifh0dbV2NQRMHzpp FfkFDeCaS93gc9yh2Y19TDaTBUG1pyncd0pBtJvYpvXClonmqFM4TfXEq3JIBRo3 +NOYlUIajbQK3JBPEJDdGrw7bgW55c67VS0LJr9mhCe3xkONJkb3MM2GVwIOiRz8 Q0sXgVQW5n3yNaAAOg0ZEfN1mkFflTRhXk0RDGNrMc/2VGwc+h9X0M1VIN0qQmVo UmBEnag8vQWtUKU4amUyLC4MiaozAxauM1rPOyG/bZvYCyQxu80= =43z2 -----END PGP SIGNATURE-----