validating the fix for CVE-2025-40778
Bagas Sanjaya
bagasdotme at gmail.com
Tue Dec 9 01:41:48 UTC 2025
On Mon, Dec 08, 2025 at 06:24:05PM -0500, Veaceslav Revutchi wrote:
> --------
> ; <<>> DiG 9.18.41-1~deb12u1-Debian <<>> @a.root-servers.net. hosting.cd +norec
>
> ;; AUTHORITY SECTION:
> cd. 172800 IN NS ns-root-23.scpt-network.net.
> cd. 172800 IN NS ns-root-21.scpt-network.net.
> cd. 172800 IN NS ns-root-22.scpt-network.net.
>
> ;; ADDITIONAL SECTION:
> ns-root-23.scpt-network.net. 172800 IN A 161.97.87.130
> ns-root-21.scpt-network.net. 172800 IN A 102.68.62.15
> ns-root-22.scpt-network.net. 172800 IN A 102.68.60.15
>
> --------
>
> ; <<>> DiG 9.18.41-1~deb12u1-Debian <<>> @a.gtld-servers.net.
> ns-root-21.scpt-network.net +norec
>
> ;; AUTHORITY SECTION:
> scpt-network.net. 172800 IN NS ns1.scpt-network.cd.
> scpt-network.net. 172800 IN NS ns2.scpt-network.cd.
My BIND 9.21 (in forwarding configuration) gets instead:
; <<>> DiG 9.21.16-dev <<>> cd NS @127.0.0.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40206
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 18d68e17886bd5b00100000069377e1ef6a261881ba96676 (good)
;; QUESTION SECTION:
;cd. IN NS
;; ANSWER SECTION:
cd. 41114 IN NS pch.nic.cd.
cd. 41114 IN NS gransy-anycast1.nic.cd.
cd. 41114 IN NS gransy-anycast2.nic.cd.
Thanks.
--
An old man doll... just what I always wanted! - Clara
More information about the bind-users
mailing list