Zimperium reported on July 30 (9 days ago) that they believe that this is being exploited in the wild. In the same post, they write "Zimperium’s Mobile Threat Protection customers are safe from this threat, even without updating the device to the latest Android version." If they are to be believed, this confirms that Android security software *can* protect from the Stagefright exploit. Trend Micro claims to offer "a layer of protection", but I interpret that as meaning "probably better than nothing".
ESET makes no claim of protection, and only advises app-level mitigations (for MMS and web browsers) while ignoring vulnerabilities through other video-capable apps or through malicious apps. Would ESET protect against malicious apps? This article on The Hacker News provides a good high-level description of the non-mms attack vectors. For more detail, read Trend Micro's report.
FWIW, the latest versions of Textra and Chomp SMS have Stagefright-specific protections that default to on. This is in addition to to Google's Messages and the other SMS/MMS apps that are normally mentioned in mitigation procedures.