[SECURITY-L] Vulnerabilidades de seguranca
Daniela Regina Barbetti Silva
daniela em ccuec.unicamp.br
Qui Set 19 16:27:06 -03 2002
Srs. Usuarios,
Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:
17/09/2002:
-----------
NetBSD Security Advisory 2002-06
Assunto: buffer overrun in libc/libresolv DNS resolver.
http://www.security.unicamp.br/docs/bugs/2002/09/v38.txt
NetBSD Security Advisory 2002-07
Assunto: Repeated TIOCSCTTY ioctl can corrupt session hold counts.
http://www.security.unicamp.br/docs/bugs/2002/09/v39.txt
NetBSD Security Advisory 2002-09
Assunto: Multiple vulnerabilities in OpenSSL code.
http://www.security.unicamp.br/docs/bugs/2002/09/v40.txt
NetBSD Security Advisory 2002-10
Assunto: symlink race in pppd.
http://www.security.unicamp.br/docs/bugs/2002/09/v41.txt
NetBSD Security Advisory 2002-11
Assunto: Sun RPC XDR decoder contains buffer overflow.
http://www.security.unicamp.br/docs/bugs/2002/09/v42.txt
NetBSD Security Advisory 2002-12
Assunto: buffer overrun in setlocale.
http://www.security.unicamp.br/docs/bugs/2002/09/v43.txt
NetBSD Security Advisory 2002-13
Assunto: Bug in NFS server code allows remote denial of service.
http://www.security.unicamp.br/docs/bugs/2002/09/v44.txt
NetBSD Security Advisory 2002-14
Assunto: fd_set overrun in mbone tools and pppd.
http://www.security.unicamp.br/docs/bugs/2002/09/v45.txt
NetBSD Security Advisory 2002-17
Assunto: shutdown(s, SHUT_RD) on TCP socket does not work as
intended.
http://www.security.unicamp.br/docs/bugs/2002/09/v46.txt
NetBSD Security Advisory 2002-18
Assunto: Multiple security isses with kfd daemon.
http://www.security.unicamp.br/docs/bugs/2002/09/v47.txt
Debian Security Advisory (DSA 136-3)
Assunto: vulnerabilidade de seguranca no pacote openssl094.
http://www.security.unicamp.br/docs/bugs/2002/09/v48.txt
18/09/2002:
-----------
SuSE Security Announcement (SuSE-SA:2002:032)
Assunto: vulnerabilidade de seguranca no pacote xf86.
http://www.security.unicamp.br/docs/bugs/2002/09/v49.txt
Debian Security Advisory (DSA 168-1)
Assunto: vulnerabilidade de seguranca nos pacotes PHP3, PHP4.
http://www.security.unicamp.br/docs/bugs/2002/09/v50.txt
Cisco Security Advisory
Assunto: Cisco VPN 5000 Client Multiple Vulnerabilities.
http://www.security.unicamp.br/docs/bugs/2002/09/v51.txt
Cisco Security Advisory
Assunto: Microsoft Windows SMB Denial of Service Vulnerabilities
in Cisco Products - MS02-045.
http://www.security.unicamp.br/docs/bugs/2002/09/v52.txt
SGI Security Advisory (20020902-01-I)
Assunto: IRIX default root umask and coredumps.
http://www.security.unicamp.br/docs/bugs/2002/09/v53.txt
Microsoft Security Bulletin (MS02-051)
Assunto: Cryptographic Flaw in RDP Protocol can Lead to
Information Disclosure (Q324380).
http://www.security.unicamp.br/docs/bugs/2002/09/v54.txt
Microsoft Security Bulletin (MS02-052)
Assunto: Flaw in Microsoft VM JDBC Classes Could Allow Code
Execution (Q329077).
http://www.security.unicamp.br/docs/bugs/2002/09/v55.txt
19/09/2002:
-----------
CAIS-Alerta
Assunto: Falha no protocolo RDP (Q324380).
http://www.security.unicamp.br/docs/bugs/2002/09/v56.txt
CAIS-Alerta
Assunto: Vulnerabilidades no Microsoft VM JDBC (Q329077).
http://www.security.unicamp.br/docs/bugs/2002/09/v57.txt
--
Equipe de Seguranca em Sitemas e Redes
Unicamp - Universidade Estadual de Campinas
mailto:security em unicamp.br
http://www.security.unicamp.br
Mais detalhes sobre a lista de discussão SECURITY-L