From: Nicki Křížek <nicki@isc.org>
Date: Thu, 8 Jan 2026 11:32:38 +0000 (+0100)
Subject: [CVE-2025-13878] sec: usr: Fix incorrect length checks for BRID and HHIT records
X-Git-Tag: v9.21.17~2
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=7bf83f69a80bdc6094c2adee3595e28b1b3e19ea;p=thirdparty%2Fbind9.git

[CVE-2025-13878] sec: usr: Fix incorrect length checks for BRID and HHIT records

Malformed BRID and HHIT records could trigger an assertion failure. This has been fixed.

ISC would like to thank Vlatko Kosturjak from Marlink Cyber for bringing
this vulnerability to our attention.

Closes isc-projects/bind9#5616

Merge branch '5616-confidential-brid-hhit-towire' into 'v9.21.17-release'

See merge request isc-private/bind9!876
---

7bf83f69a80bdc6094c2adee3595e28b1b3e19ea