anyone at Sophos can comment on the EXIM vulns, for instance as described here? https://www.heise.de/news/Jetzt-patchen-Kritische-Root-Luecken-bedrohen-Exim-Mail-Server-6036724.html
We just released a new 9.705-7 update on our download server which addresses these exim vulnerabilities.
Thanks for reaching out to the Community!
The internal teams are currently investigating this, and we'll provide an update as soon as more information becomes available.
Community Support Engineer | Sophos Technical SupportSupport Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts If a post solves your question use the 'Verify Answer' button.
How long do they need ?
by the way, the last up2date was 9.705-3. This update is 7 (!) month old !
What the heck are u guys not doin ?
If you dump the utm , then let us know !
Please check out the following release note:
I can't see any Exim fixes in the release notes. What am I missing?
The Vulnerabilities was disclosed yesterday evening. UTM 9.706 was released two days ago. Therefore it cannot include any kind of fixes.
so why have the release notes been posted here?
Hi Marcel Bruckner,
The release notes were posted as a response to WolfgangS comment.
UTM9.706 was built some time ago and is not related to Exim, as it was already finished before Exim vulnerabilities were disclosed.
I understand. When can we expect news about the newest Exim vulnerabilities?
We'll update the following blog post with the new information as it becomes available: