EXIM Vuln. - any news?

Question

Hi, 
 
 anyone at Sophos can comment on the EXIM vulns, for instance as described here? https://www.heise.de/news/Jetzt-patchen-Kritische-Root-Luecken-bedrohen-Exim-Mail-Server-6036724.html 
 
 Thanks 
 
 Joerg

bobbylam · Accepted Answer

Hi all, 
 We just released a new 9.705-7 update on our download server which addresses these exim vulnerabilities.

bobbylam · Answer

Hi all, 
 
 We just released a 9.706-9 update on the download server as well, which patches these exim vulnerabilities for customers who already updated to 9.706-8.

bobbylam · Answer

We are working as fast as we can (almost 24 hours a day) to get the exim patches out to UTM customers. Unfortunately after integrating the exim patches, we need to do quite a bit of testing (both on email & up2date) to ensure the patches don't introduce any new issues, which is what's taking time. 
 We are still aiming to release updates to both UTM 9.705 & 9.706 this week.

EXIM Vuln. - any news?

Top Replies