[SECURITY-L] Vulnerabilidades de Seguranca

Silvana Mieko Misuta mieko em ccuec.unicamp.br
Seg Mar 24 13:45:22 -03 2003 

Srs. Usuarios,

Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:



21/03/2003
----------

FreeBSD Security Advisory (FreeBSD-SA-03:06)
Assunto: OpenSSL timing-based SSL/TLS attack
http://www.security.unicamp.br/docs/bugs/2003/03/v69.txt    
 

CAIS-Alerta
Assunto: CERT Summary CS-2003-01
http://www.security.unicamp.br/docs/bugs/2003/03/v68.txt    


EnGarde Secure Linux Security Advisory(ESA-20030321-010)
Assunto: RPC XDR decoder vulnerability in glibc
http://www.security.unicamp.br/docs/bugs/2003/03/v67.txt    
 

Gentoo Security Linux Announcement(200303-18)
Assunto: multiple vulnerabilities in evolution
http://www.security.unicamp.br/docs/bugs/2003/03/v66.txt    


RHN Errata Alert
Assunto: Updated Evolution packages fix multiple vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/03/v65.txt    


Debian Security Advisory (DSA 265-1)
Assunto: Vulnerabiliade de Seguranca no pacote bonsai
http://www.security.unicamp.br/docs/bugs/2003/03/v64.txt    


SuSE Security Announcement(SuSE-SA:2003:019)
Assunto: local privilege escalation in ethereal
http://www.security.unicamp.br/docs/bugs/2003/03/v63.txt    
 

SuSE Security Announcement(SuSE-SA:2003:018)
Assunto: remote system compromise in qpopper
http://www.security.unicamp.br/docs/bugs/2003/03/v62.txt    


SuSE Security Announcement(SuSE-SA:2003:017)
Assunto: remote system compromise in file
http://www.security.unicamp.br/docs/bugs/2003/03/v61.txt    


Gentoo Linux Security Announcement (200303-17)
Assunto:  ptrace flaw in kernel
http://www.security.unicamp.br/docs/bugs/2003/03/v60.txt    


Red Hat Security Advisory(RHSA-2003:108-01)
Assunto: Updated Evolution packages fix multiple vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/03/v59.txt    
 


20/03/2003
----------


OpenPKG Security Advisory (OpenPKG-SA-2003.026)
Assunto: information leakage in openssl 
http://www.security.unicamp.br/docs/bugs/2003/03/v58.txt    


OpenPKG Security Advisory (OpenPKG-SA-2003.025)
Assunto:  buffer overflow in IMAP client in mutt
http://www.security.unicamp.br/docs/bugs/2003/03/v57.txt    


FreeBSD Security Advisory (FreeBSD-SA-03:05)
Assunto: remote denial-of-service in XDR encoder/decoder in libc 
http://www.security.unicamp.br/docs/bugs/2003/03/v56.txt    


Gentoo Linux Security Announcement (200303-16)
Assunto: dangerous interception of escape sequences in rxvt
http://www.security.unicamp.br/docs/bugs/2003/03/v55.txt    


Gentoo Linux Security Announcement (200303-15)
Assunto: timing based attack in openssl
http://www.security.unicamp.br/docs/bugs/2003/03/v54.txt    
 


--
Equipe de Seguranca em Sistemas e Redes
Unicamp - Universidade Estadual de Campinas
Mailto:security em unicamp.br
http://www.security.unicamp.br

Mais detalhes sobre a lista de discussão SECURITY-L