RHEL9+, RSASHA1 and CVE-2025-8677
Ondřej Surý
ondrej at isc.org
Fri Nov 7 12:54:11 UTC 2025
Debian never had that problem, as RSASHA1 is not disabled there in the crypto library, the setting
disable-algorithms . {
RSASHA1;
};
is a different.
You would need something like RSAMD5 + <supported algorithm> to reproduce the issue.
Ondrej
--
Ondřej Surý (He/Him)
ondrej at isc.org
My working hours and your working hours may be different. Please do not feel obligated to reply outside your normal working hours.
> On 7. 11. 2025, at 7:46, Bjørn Mork via bind-users <bind-users at lists.isc.org> wrote:
>
> But I'm unable to reproduce the original issue with the current 9.20.15
> based package in Debian. Probably doing something wrong...
More information about the bind-users
mailing list