[SECURITY-L] Vulnerabilidades de Seguranca

[Silvana Mieko Misuta]

Srs. Usuarios,

Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:



07/05/2003
----------

Cisco Security Advisory
Assunto: Cisco VPN 3000 Concentrator Vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/05/v25.txt 


06/05/2003
----------


NGSSoftware Insight Security Research Advisory (#NISR07052003B)
Assunto: Multiple Vulnerabilities in SLWebMail
http://www.security.unicamp.br/docs/bugs/2003/05/v24.txt 


NGSSoftware Insight Security Research Advisory (#NISR07052003A)
Assunto:  Multiple Buffer Overflows in SLMail 
http://www.security.unicamp.br/docs/bugs/2003/05/v23.txt 


Anuncio de Seguranca do Conectiva Linux (CLA-2003:642)
Assunto: Vulnerabilidade no pr\xe9-processador stream4 no snort
http://www.security.unicamp.br/docs/bugs/2003/05/v22.txt 


Anuncio de Seguranca do Conectiva Linux (CLA-2003:641)
Assunto: Falta de depend\xeancias no pacote perl-modules
http://www.security.unicamp.br/docs/bugs/2003/05/v21.txt 


Debian Security Advisory (DSA 299-1)
Assunto: improper setuid-root execution in leksbot
http://www.security.unicamp.br/docs/bugs/2003/05/v20.txt 


Debian Security Advisory (DSA 300-1)
Assunto: buffer overflow in balsa
http://www.security.unicamp.br/docs/bugs/2003/05/v19.txt 



05/05/2003
----------

RHN Errata Alert (RHSA-2003:093-14)
Assunto: Updated MySQL packages fix vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/05/v18.txt 


CONECTIVA LINUX SECURITY ANNOUNCEMENT (CLA-2003:640)
Assunto: Vulnerabilties in cookies and random challenge generations in vnc 
http://www.security.unicamp.br/docs/bugs/2003/05/v17.txt 


Anuncio de Seguranca do Conectiva Linux (CLA-2003:640)
Assunto: Vulnerabilidades na geração de cookies e números aleatórios
http://www.security.unicamp.br/docs/bugs/2003/05/v16.txt 


Anuncio de Seguranca do Conectiva Linux (CLA-2003:639)
Assunto:  Diversas vulnerabilidades no Kerberos
http://www.security.unicamp.br/docs/bugs/2003/05/v15.txt 


SCO Security Advisory (CSSA-2003-019.0)
Assunto: OpenLinux: tcp SYN with FIN packets are not discarded
http://www.security.unicamp.br/docs/bugs/2003/05/v14.txt 


Centro de Atendimento a Incidentes de Seguranca 
Assunto: CAIS-Alerta: Patch Acumulativo para o Microsoft BizTalk Server (815206)
http://www.security.unicamp.br/docs/bugs/2003/05/v13.txt 



02/05/2003
----------

Anuncio de Seguranca do Conectiva Linux (CLA-2003:638)
Assunto: Problema com dicion\xe1rio b\xe1sico no pacote cracklib
http://www.security.unicamp.br/docs/bugs/2003/05/v12.txt 


SCO Security Advisory (CSSA-2003-018.0)
Assunto: OpenLinux: file command buffer overflow
http://www.security.unicamp.br/docs/bugs/2003/05/v11.txt 


SCO Security Advisory (CSSA-2003-017.0)
Assunto: OpenLinux: Various serious Samba vulnerabilities
http://www.security.unicamp.br/docs/bugs/2003/05/v10.txt 


Anuncio de Seguranca do Conectiva Linux (CLA-2003:637)
Assunto:  Erro de sintaxe no script vncserver
http://www.security.unicamp.br/docs/bugs/2003/05/v9.txt 


Red Hat Security Advisory (RHSA-2003:113-01)
Assunto: Updated mod_auth_any packages available
http://www.security.unicamp.br/docs/bugs/2003/05/v8.txt 


Debian Security Advisory (DSA 298-1)
Assunto: buffer overflows in epic4 
http://www.security.unicamp.br/docs/bugs/2003/05/v6.txt 


01/05/2003
----------

Gentoo Linux Security Announcement (200305-01)
Assunto: timing attack leads to information disclosure in openssh
http://www.security.unicamp.br/docs/bugs/2003/05/v7.txt 


Microsoft
Assunto: Integer Manipulation Attacks
http://www.security.unicamp.br/docs/bugs/2003/05/v5.txt 


Red Hat Network (RHSA-2003:133-05)
Assunto: Updated man packages fix minor vulnerability
http://www.security.unicamp.br/docs/bugs/2003/05/v4.txt 


Cisco Security Advisory
Assunto: Nessus exposes FTP and Telnet vulnerabilities in Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 
http://www.security.unicamp.br/docs/bugs/2003/05/v3.txt 


Debian Security Advisory (DSA 297-1)
Assunto: integer overflow, buffer overflow in snort
http://www.security.unicamp.br/docs/bugs/2003/05/v2.txt 


Red Hat Security Advisory (RHSA-2003:133-01)
Assunto: Updated man packages fix minor vulnerability
http://www.security.unicamp.br/docs/bugs/2003/05/v1.txt 

 
--
Equipe de Seguranca em Sistemas e Redes
Unicamp - Universidade Estadual de Campinas
Mailto:security em unicamp.br
http://www.security.unicamp.br