[SECURITY-L] Vulnerabilidades de seguranca

Qua Fev 2 16:03:23 -02 2005

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:

Debian Security Advisory:
- -------------------------
02/02/2005 - DSA 664-1
Assunto: vulnerabilidade de seguranca no pacote cpio.
http://www.security.unicamp.br/docs/bugs/2005/02/v8.txt

01/02/2005 - DSA 663-1
Assunto: vulnerabilidade de seguranca no pacote prozilla.
http://www.security.unicamp.br/docs/bugs/2005/02/v3.txt

01/02/2005 - DSA 662-1
Assunto: vulnerabilidade de seguranca no pacote squirrelmail.
http://www.security.unicamp.br/docs/bugs/2005/02/v2.txt

Fedora Update Notification:
- ---------------------------
01/02/2005 - FEDORA-2005-105
Assunto: Fedora Core 2: squid.
http://www.security.unicamp.br/docs/bugs/2005/02/v5.txt

28/01/2004 - FEDORA-2005-092
Assunto: Fedora Core 3: enscript. 
http://www.security.unicamp.br/docs/bugs/2005/01/v166.txt

28/01/2004 - FEDORA-2005-091
Assunto: Fedora Core 2: enscript.
http://www.security.unicamp.br/docs/bugs/2005/01/v165.txt

Gentoo Linux Security Advisory:
- -------------------------------
01/02/2005 - GLSA 200502-01
Assunto: FireHOL: Insecure temporary file creation.
http://www.security.unicamp.br/docs/bugs/2005/02/v4.txt

31/01/2005 - GLSA 200501-46
Assunto: ClamAV: Multiple issues. 
http://www.security.unicamp.br/docs/bugs/2005/01/v164.txt

30/01/2005 - GLSA 200501-45
Assunto: Gallery: Cross-site scripting vulnerability. 
http://www.security.unicamp.br/docs/bugs/2005/01/v163.txt

30/01/2005 - GLSA 200501-44
Assunto: ncpfs: Multiple vulnerabilities. 
http://www.security.unicamp.br/docs/bugs/2005/01/v162.txt

30/01/2005 - GLSA 200501-43
Assunto: f2c: Insecure temporary file creation. 
http://www.security.unicamp.br/docs/bugs/2005/01/v161.txt

30/01/2005 - GLSA 200501-42
Assunto: VDR: Arbitrary file overwriting issue. 
http://www.security.unicamp.br/docs/bugs/2005/01/v160.txt

30/01/2005 - GLSA 200501-41
Assunto: TikiWiki: Arbitrary command execution. 
http://www.security.unicamp.br/docs/bugs/2005/01/v159.txt

28/01/2005 - GLSA 200501-40
Assunto: ngIRCd: Buffer overflow. 
http://www.security.unicamp.br/docs/bugs/2005/01/v158.txt

HP Security Bulletin:
- ---------------------
01/02/2005 - HPSBUX01111
Assunto: SSRT5900 rev.0 HP-UX TGA daemon remote Denial of Service (DoS).
http://www.security.unicamp.br/docs/bugs/2005/02/v1.txt

31/01/2005 - HPSBTU01112
Assunto: SSRT4875 rev.1 - HP Tru64 UNIX: Java (TM) Technology 
Software Denial of Service (DoS).
http://www.security.unicamp.br/docs/bugs/2005/01/v167.txt

Mandrakelinux Security Update Advisory:
- ---------------------------------------
01/02/2005 - MDKSA-2005:028
Assunto: vulnerabilidade de seguranca no pacote ncpfs. 
http://www.security.unicamp.br/docs/bugs/2005/02/v7.txt

31/01/2005 - MDKSA-2005:025
Assunto: vulnerabilidade de seguranca no pacote clamav. 
http://www.security.unicamp.br/docs/bugs/2005/01/v168.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQFCARW//UMb1l3gm8IRAkwKAJ9+jfiNldjn8nml7bBGyq3K5R7engCeLxUm
aqG8zNz3x3FYBMm70b5L6YI=
=/Rx5
-----END PGP SIGNATURE-----