[SECURITY-L] Vulnerabilidades de Seguranca
Security Team - UNICAMP
security em unicamp.br
Ter Nov 4 17:30:38 -02 2003
Srs. Usuarios,
Atualizamos o site da Equipe de Seguranca em Sistemas e Redes
da Unicamp com os seguintes boletins de vulnerabilidades:
17/10/2003
----------
Immunix Secured OS Security Advisory (IMNX-2003-7+-023-01)
Assunto: Vulnerabilidade de Seguranca nos pacotes fetchmail, fetchmailconf.
http://www.security.unicamp.br/docs/bugs/2003/10/v66.txt
19/10/2003
----------
OpenPKG Security Advisory (OpenPKG-SA-2003.045)
Assunto: remote denial of service vulnerability
http://www.security.unicamp.br/docs/bugs/2003/10/v67.txt
20/10/2003
----------
@stake Security Advisory (a102003-1)
Assunto: Opera HREF escaped server name overflow
http://www.security.unicamp.br/docs/bugs/2003/10/v68.txt
SCO Security Advisory (CSSA-2003-SCO.27)
Assunto: OpenServer 5.0.5 : Insecure creation of files in /tmp
http://www.security.unicamp.br/docs/bugs/2003/10/v69.txt
22/10/2003
----------
Anuncio de Seguranca do Conectiva Linux (CLA-2003:768)
Assunto: Vulnerabilidade remota de negacao de servico atraves do wu-ftpd
http://www.security.unicamp.br/docs/bugs/2003/10/v70.txt
Conectiva Linux Security Announcement (CLA-2003:768)
Assunto: Denial of service vulnerability (exploitable through wu-ftpd)
http://www.security.unicamp.br/docs/bugs/2003/10/v71.txt
Anuncio de Seguranca do Conectiva Linux (CLA-2003:769)
Assunto: Vulnerabilidades no saned e na utilizacao de arquivos temporarios
http://www.security.unicamp.br/docs/bugs/2003/10/v72.txt
Conectiva Linux Security Announcement (CLA-2003:769)
Assunto: Vulnerabilities in saned and in temporary files handling
http://www.security.unicamp.br/docs/bugs/2003/10/v73.txt
Microsoft Security Bulletin
Assunto: Microsoft Windows Security Bulletin Summary for October 2003
http://www.security.unicamp.br/docs/bugs/2003/10/v74.txt
Microsoft Security Bulletin
Assunto: Microsoft Exchange Server Security Bulletin Summary for October 2003
http://www.security.unicamp.br/docs/bugs/2003/10/v75.txt
24/10/2003
----------
Anuncio de Seguranca do Conectiva Linux (CLA-2003:771)
Assunto: Vulnerabilidade remota de negacao de servico no pacote anonftp
http://www.security.unicamp.br/docs/bugs/2003/10/v76.txt
Conectiva Linux Security Announcement (CLA-2003:771)
Assunto: Remote denial of service vulnerability in anonftp
http://www.security.unicamp.br/docs/bugs/2003/10/v77.txt
Mandrake Linux Security Update Advisory (MDKSA-2003:096-1)
Assunto: Vulnerabilidade de Seguranca no apache2
http://www.security.unicamp.br/docs/bugs/2003/10/v78.txt
27/10/2003
----------
SGI Security Advisory (20031001-01-U)
Assunto: SGI Advanced Linux Environment security update #2
http://www.security.unicamp.br/docs/bugs/2003/10/v79.txt
SGI Security Advisory (20031002-01-U)
Assunto: SGI Advanced Linux Environment security update #3
http://www.security.unicamp.br/docs/bugs/2003/10/v80.txt
SGI Security Advisory (20031003-01-U)
Assunto: SGI Advanced Linux Environment security update #4
http://www.security.unicamp.br/docs/bugs/2003/10/v81.txt
Slackware Security Team (SSA:2003-300-01)
Assunto: gdm security update
http://www.security.unicamp.br/docs/bugs/2003/10/v82.txt
Slackware Security Team (SSA:2003-300-02)
Assunto: fetchmail security update
http://www.security.unicamp.br/docs/bugs/2003/10/v83.txt
28/10/2003
----------
OpenPKG Security Advisory (OpenPKG-SA-2003.046)
Assunto: local buffer overflow no apache
http://www.security.unicamp.br/docs/bugs/2003/10/v84.txt
@stake Security Advisory (a102803-1)
Assunto: Arbitrary File Overwrite via Core Files on kernel
http://www.security.unicamp.br/docs/bugs/2003/10/v85.txt
@stake Security Advisory (a102803-1)
Assunto: Systemic Insecure File Permissions on Finder (Many)
http://www.security.unicamp.br/docs/bugs/2003/10/v86.txt
@stake Security Advisory (a102803-3)
Assunto: Long argv[] buffer overflow
http://www.security.unicamp.br/docs/bugs/2003/10/v87.txt
STG Security Advisory (SSA-20031025-05)
Assunto: InfronTech WebTide 7.04 Directory and File Disclosure Vulnerability
http://www.security.unicamp.br/docs/bugs/2003/10/v88.txt
Anuncio de Seguranca do Conectiva Linux (CLA-2003:773)
Assunto: Vulnerabilidade remota de estouro de buffer no libnids
http://www.security.unicamp.br/docs/bugs/2003/10/v89.txt
Conectiva Linux Security Announcement (CLA-2003:773)
Assunto: Remotely exploitable buffer overflow vulnerability in libnids
http://www.security.unicamp.br/docs/bugs/2003/10/v90.txt
Immunix Secured OS Security Advisory (IMNX-2003-7+-025-01)
Assunto: Vulnerabilidade de Seguranca no apache
http://www.security.unicamp.br/docs/bugs/2003/10/v91.txt
Microsoft Windows Security Bulletin
Assunto: Microsoft Windows Security Bulletin Summary for October 2003
http://www.security.unicamp.br/docs/bugs/2003/10/v92.txt
OpenPKG Security Advisory (OpenPKG-SA-2003.047)
Assunto: remote code execution in postgresql
http://www.security.unicamp.br/docs/bugs/2003/10/v93.txt
Gentoo Linux Security Announcement (200310-04)
Assunto: buffer overflow on net-www/apache
http://www.security.unicamp.br/docs/bugs/2003/10/v94.txt
SUSE Security Announcement (SuSE-SA:2003:044)
Assunto: remote privilege escalation/ information leak on thttpd
http://www.security.unicamp.br/docs/bugs/2003/10/v95.txt
Immunix Secured OS Security Advisory (IMNX-2003-7+-026-01)
Assunto: Vulnerabilidade de Seguranca no pacote fileutils
http://www.security.unicamp.br/docs/bugs/2003/10/v96.txt
Mais detalhes sobre a lista de discussão SECURITY-L