3 Replies Latest reply on Feb 18, 2016 7:45 AM by michael_schneider

    CVE-2015-7547 Vulnerability

    skymaster

      Hello everyone,

      is there any information about the CVE-2015-7547 vulnerability concerning MWG and related versions?

      I was so far unable to find anything.


      Regards

      Dan

        • 1. Re: CVE-2015-7547 Vulnerability
          Unblack

          I have the same question also regarding the FW and the E-Mail Gateway.

          • 2. Re: CVE-2015-7547 Vulnerability
            feickholt

            Issue Summary:

             

            Our initial investigations showed that the issue affected all the versions of glibc since 2.9.

             

            This is the Verison on our MWG 7.3 and 7.6

             

            ldd --version

            ldd (GNU libc) 2.12

            Copyright (C) 2010 Free Software Foundation, Inc.

            This is free software; see the source for copying conditions.  There is NO

            warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

            Written by Roland McGrath and Ulrich Drepper.

             

             

            So I expect the Proxies are effected by this Vulnerability unless McAfee does not modify the lib in the past.

            • 3. Re: CVE-2015-7547 Vulnerability
              michael_schneider

              As usual, we will not discuss,disclose or comment on vulnerabilities in this community.

              Please open either a support ticket with (if not done already) or wait for SNS to be sent out/KB articles to be published.

               

              thanks,

              Michael