CVE-2015-7547 status/fix ?

Question

Hello, 
 I would like to know the status of UTM 9 regarding the newly discovered bug in glibc CVE-2015-7547 (buffer overflow in getaddrinfo()). it looks like the current version is vulnerable and therefore will require a fix. 
 I don't think there is a workaround possible: the suggested ones all resolve around blocking UDP DNS packets larger than 512 bytes and I don't think that is possible in UTM.

ThomasBrewster · Accepted Answer

See www.sophos.com/.../123675.aspx - ETA for fix is 3/3/2016

MichaelPier · Answer

Hi, 
Try this download: 
 ftp.astaro.com/.../u2d-sys-9.353004-354004.tgz.gpg 
 
Or try to hit manual up2date in your SG/UTM Appliance. Then it will download the updated data from the sophos servers. 
 
Kind regards, 
 
Michael

SofieBauhouse · Answer

Is Fixed today with Security Update v9.355001 ;) regards 
 https://www.sophos.com/en-us/support/knowledgebase/123675.aspx