[SECURITY-L] Vulnerabilidades de seguranca

Ter Out 15 16:04:49 -03 2002

Srs. Usuarios,

Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:

08/10/2002:
-----------
KDE Security Advisory
Assunto: KGhostviewa Arbitary Code Execution.
http://www.security.unicamp.br/docs/bugs/2002/10/v45.txt

KDE Security Advisory
Assunto: kpf Directory traversal. 
http://www.security.unicamp.br/docs/bugs/2002/10/v46.txt

Red Hat, Inc. Red Hat Security Advisory (RHSA-2002:194-18)
Assunto: Command execution vulnerability in dvips.
http://www.security.unicamp.br/docs/bugs/2002/10/v57.txt

09/10/2002:
-----------
Red Hat, Inc. Red Hat Security Advisory (RHSA-2002:207-14)
Assunto: Updated packages fix PostScript and PDF security issue
http://www.security.unicamp.br/docs/bugs/2002/10/v47.txt

Red Hat, Inc. Red Hat Security Advisory (RHSA-2002:204-10)
Assunto: Updated squirrelmail packages close cross-site scripting
vulnerabilities.
http://www.security.unicamp.br/docs/bugs/2002/10/v50.txt

10/10/2002:
-----------
Microsoft Security Bulletin (MS02-058)
Assunto: Unchecked Buffer in Outlook Express S/MIME Parsing
Could Enable System Compromise (Q328676). 
http://www.security.unicamp.br/docs/bugs/2002/10/v48.txt

SCO Security Advisory (CSSA-2002-SCO.40)
Assunto: OpenServer 5.0.5 OpenServer 5.0.6 : ypxfrd remote
file access vulnerability.
http://www.security.unicamp.br/docs/bugs/2002/10/v49.txt

11/10/2002:
-----------
CAIS-Alerta
Assunto: Vulnerabilidade no S/MIME do Outlook Express (Q328676). 
http://www.security.unicamp.br/docs/bugs/2002/10/v51.txt

SCO Security Advisory (CSSA-2002-SCO.39)
Assunto: OpenServer 5.0.5 OpenServer 5.0.6 : Buffer Overflow
in Multiple DNS Resolver Libraries.
http://www.security.unicamp.br/docs/bugs/2002/10/v52.txt

Gentoo Linux Security Announcement
Assunto: vulnerabilidade de seguranca no package nss_ldap. 
http://www.security.unicamp.br/docs/bugs/2002/10/v53.txt

Gentoo Linux Security Announcement
Assunto: vulnerabilidade de seguranca no package sendmail. 
http://www.security.unicamp.br/docs/bugs/2002/10/v54.txt

Gentoo Linux Security Announcement
Assunto: vulnerabilidade de seguranca no package net-snmp. 
http://www.security.unicamp.br/docs/bugs/2002/10/v55.txt

14/10/2002:
-----------
Gentoo Linux Security Announcement
Assunto: vulnerabilidade de seguranca no package heimdal. 
http://www.security.unicamp.br/docs/bugs/2002/10/v58.txt

SuSE Security Announcement (SuSE-SA:2002:037)
Assunto: vulnerabilidade de seguranca no package heartbeat. 
http://www.security.unicamp.br/docs/bugs/2002/10/v59.txt

Red Hat, Inc. Red Hat Security Advisory (RHSA-2002:196-09)
Assunto: Updated xinetd packages fix denial of service vulnerability. 
http://www.security.unicamp.br/docs/bugs/2002/10/v56.txt

15/10/2002:
-----------
Gentoo Linux Security Announcement
Assunto: vulnerabilidade de seguranca no package tomcat. 
http://www.security.unicamp.br/docs/bugs/2002/10/v57.txt

Gentoo Linux Security Announcement
Assunto: vulnerabilidade de seguranca no package apache. 
http://www.security.unicamp.br/docs/bugs/2002/10/v58.txt

--
Equipe de Seguranca em Sitemas e Redes
Unicamp - Universidade Estadual de Campinas
mailto:security em unicamp.br
http://www.security.unicamp.br    