validating the fix for CVE-2025-40778
Veaceslav Revutchi
vrevutchi1 at gmail.com
Thu Dec 11 08:34:33 UTC 2025
On Wed, Dec 10, 2025 at 5:29 AM Darren Ankney <darren.ankney at gmail.com> wrote:
>
> Hi Veaceslav,
>
> I am able to resolve rawbank.cd using BIND 9.20.16:
>
Thank you, Darren, I see what you mean, using a local root does make a
difference, I suppose that glue becomes more trustworthy.
I was looking more for an explanation of why I was seeing different
results on the three bind platforms, all supposedly patched for the
CVE. The reply from Petr at ISC clarified it for me in the sense that the
fix may be broken on that one system and I may need to follow-up with
redhat.
If I wanted to work around the poor setup at the root for ".cd" I
understand I have options.
More information about the bind-users
mailing list