VMware issued yesterday the following security advisory: VMSA-2016-0002 [1]. It addresses the CVE-2015-7547 [2] (getaddrinfo() in glibc) which affects the following products:

• VMware ESXi 5.5 without patch ESXi550-201602401-SG
• VMware virtual appliances

Note that a patch is still pending for ESXi 6.0.

[1] http://www.vmware.com/security/advisories/VMSA-2016-0002.html
[2] https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7547

Xavier Mertens
ISC Handler - Freelance Security Consultant
PGP Key