[SECURITY-L] Vulnerabilidades de seguranca

[Daniela Regina Barbetti Silva]

Srs. Usuarios,

Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:


14/06/2002:
-----------
Microsoft Security Bulletin (MS02-027)
Assunto: Unchecked Buffer in Gopher Protocol Handler Can Run
Code of Attacker's Choice (Q323889).
http://www.security.unicamp.br/docs/bugs/2002/06/v80.txt


24/06/2002:
-----------
Mandrake Linux Security Update Advisory (MDKSA-2002:040)
Assunto: vulnerabilidade de seguranca no software openssh.
http://www.security.unicamp.br/docs/bugs/2002/06/v81.txt


25/06/2002:
-----------
EnGarde Secure Linux Security Advisory (ESA-20020625-015)
Assunto: vulnerabilidade de seguranca no software openssh.
http://www.security.unicamp.br/docs/bugs/2002/06/v82.txt

SuSE Security Announcement (SuSE-SA:2002:023)
Assunto: vulnerabilidade de seguranca no software openssh.
http://www.security.unicamp.br/docs/bugs/2002/06/v83.txt

Caldera International, Inc. Security Advisory (CSSA-2002-SCO.30)
Assunto: UnixWare 7.1.1 Open UNIX 8.0.0: dtprintinfo buffer 
overflow with Help search.
http://www.security.unicamp.br/docs/bugs/2002/06/v85.txt


26/06/2002:
-----------
Revised: OpenSSH Security Advisory
http://www.security.unicamp.br/docs/bugs/2002/06/v87.txt

FreeBSD, Inc. Security Advisory (FreeBSD-SA-02:28)
Assunto: buffer overflow in resolver.
http://www.security.unicamp.br/docs/bugs/2002/06/v88.txt

CAIS-ALERTA: Vulnerabilidade Remota no OpenSSH. 
http://www.security.unicamp.br/docs/bugs/2002/06/v89.txt

Slackware-security
Assunto: new OpenSSH packages available. 
http://www.security.unicamp.br/docs/bugs/2002/06/v90.txt

CERT Advisory CA-2002-18
Assunto: OpenSSH Vulnerabilities in Challenge Response Handling. 
http://www.security.unicamp.br/docs/bugs/2002/06/v91.txt

Microsoft Security Bulletin (MS02-032)
Assunto: Cumulative Patch for Windows Media Player (Q320920).
http://www.security.unicamp.br/docs/bugs/2002/06/v92.txt

Microsoft Security Bulletin (MS02-033)
Assunto: Unchecked Buffer in Profile Service Could Allow Code
Execution in Commerce Server (Q322273).
http://www.security.unicamp.br/docs/bugs/2002/06/v93.txt

Trustix Secure Linux Security Advisory #2002-0058
Assunto: vulnerabilidade de seguranca no software apache. 
http://www.security.unicamp.br/docs/bugs/2002/06/v104.txt


27/06/2002:
-----------
Debian Security Advisory (DSA 134-4)
Assunto: vulnerabilidade de seguranca no software openssh.
http://www.security.unicamp.br/docs/bugs/2002/06/v94.txt

Cisco Security Advisory
Assunto: Scanning for SSH Can Cause a Crash.
http://www.security.unicamp.br/docs/bugs/2002/06/v95.txt

NetBSD Security Advisory 2002-005
Assunto: OpenSSH protocol version 2 challenge-response 
authentication vulnerability. 
http://www.security.unicamp.br/docs/bugs/2002/06/v96.txt

NetBSD Security Advisory 2002-006
Assunto: buffer overrun in libc DNS resolver. 
http://www.security.unicamp.br/docs/bugs/2002/06/v97.txt

Anúncio de atualização do Conectiva Linux (CLA-2002:501)
Assunto: Problemas na instalação do netsaint-www. 
http://www.security.unicamp.br/docs/bugs/2002/06/v98.txt

Caldera International, Inc. Security Advisory (CSSA-2002-030.0)
Assunto: Linux: OpenSSH Vulnerabilities in Challenge Response Handling. 
http://www.security.unicamp.br/docs/bugs/2002/06/v99.txt

CAIS-ALERTA
Assunto: Patch Acumulativo para o Windows Media Player (Q320920).
http://www.security.unicamp.br/docs/bugs/2002/06/v100.txt

CAIS-ALERTA
Assunto: Vulnerabilidades no Microsoft Commerce Server (Q322273). 
http://www.security.unicamp.br/docs/bugs/2002/06/v101.txt

CAIS-ALERTA
Assunto: CERT Advisory CA-2002-18 Vulnerabilidades no OpenSSH. 
http://www.security.unicamp.br/docs/bugs/2002/06/v102.txt

Red Hat, Inc. Red Hat Security Advisory (RHSA-2002:127-18)
Assunto: Updated OpenSSH packages fix various security issues. 
http://www.security.unicamp.br/docs/bugs/2002/06/v103.txt



28/06/2002:
-----------
Trustix Secure Linux Security Advisory #2002-0059
Assunto: vulnerabilidade de seguranca no software openssh.
http://www.security.unicamp.br/docs/bugs/2002/06/v105.txt

Anúncio de segurança do Conectiva Linux (CLA-2002:502)
Assunto: Vulnerabilidade remota no OpenSSH. 
http://www.security.unicamp.br/docs/bugs/2002/06/v106.txt

CERT Advisory CA-2002-19
Assunto: Buffer Overflow in Multiple DNS Resolver Libraries. 
http://www.security.unicamp.br/docs/bugs/2002/06/v107.txt

Anúncio de atualização do Conectiva Linux (CLA-2002:503)
Assunto: Correções para nss_ldap. 
http://www.security.unicamp.br/docs/bugs/2002/06/v108.txt


--
Equipe de Seguranca em Sistemas e Redes
Unicamp - Universidade Estadual de Campinas
mailto:security em unicamp.br
http://www.security.unicamp.br