[SECURITY-L] Vulnerabilidades de seguranca
CSIRT - UNICAMP
security em unicamp.br
Seg Fev 13 17:01:44 -02 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Srs. Assinantes,
Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:
Anúncio de Segurança do Conectiva Linux:
========================================
06/02/2006 - CLA-2006:1063
Assunto: Correção para arquivo de configuração do pacote sasl2.
http://www.security.unicamp.br/docs/bugs/2006/02/v32.txt
Debian Security Advisory:
=========================
10/02/2006 - DSA 967-1
Assunto: elog.
http://www.security.unicamp.br/docs/bugs/2006/02/v8.txt
09/02/2006 - DSA 966-1
Assunto: adzapper.
http://www.security.unicamp.br/docs/bugs/2006/02/v7.txt
06/02/2006 - DSA 965-1
Assunto: ipsec-tools.
http://www.security.unicamp.br/docs/bugs/2006/02/v6.txt
03/02/2006 - DSA 964-1
Assunto: gnocatan.
http://www.security.unicamp.br/docs/bugs/2006/02/v5.txt
02/02/2006 - DSA 963-1
Assunto: mydns.
http://www.security.unicamp.br/docs/bugs/2006/02/v3.txt
01/02/2006 - DSA 961-1
Assunto: pdfkit.framework.
http://www.security.unicamp.br/docs/bugs/2006/02/v4.txt
31/01/2006 - DSA 960-2
Assunto: libmail-audit-perl.
http://www.security.unicamp.br/docs/bugs/2006/01/v35.txt
Fedora Update Notification:
===========================
10/02/2006 - FEDORA-2006-107
Assunto: Fedora Core 4: gnutls.
http://www.security.unicamp.br/docs/bugs/2006/02/v30.txt
10/02/2006 - FEDORA-2006-105
Assunto: Fedora Core 4: kdegraphics.
http://www.security.unicamp.br/docs/bugs/2006/02/v29.txt
10/02/2006 - FEDORA-2006-104
Assunto: Fedora Core 4: xpdf.
http://www.security.unicamp.br/docs/bugs/2006/02/v28.txt
10/02/2006 - FEDORA-2006-103
Assunto: Fedora Core 4: poppler.
http://www.security.unicamp.br/docs/bugs/2006/02/v27.txt
07/02/2006 - FEDORA-2006-102
Assunto: Fedora Core 4: kernel.
http://www.security.unicamp.br/docs/bugs/2006/02/v26.txt
06/02/2006 - FEDORA-2006-098
Assunto: Fedora Core 4: unzip.
http://www.security.unicamp.br/docs/bugs/2006/02/v25.txt
02/02/2006 - FEDORA-2006-076
Assunto: Fedora Core 4: firefox.
http://www.security.unicamp.br/docs/bugs/2006/02/v24.txt
02/02/2006 - FEDORA-2006-075
Assunto: Fedora Core 4: mozilla.
http://www.security.unicamp.br/docs/bugs/2006/02/v23.txt
FreeBSD Security Advisory:
==========================
01/02/2006 - FreeBSD-SA-06:08.sack
Assunto: Infinite loop in SACK handling
http://www.security.unicamp.br/docs/bugs/2006/02/v2.txt
Gentoo Linux Security Advisory:
===============================
12/02/2006 - GLSA 200602-04
Assunto: Xpdf, Poppler: Heap overflow.
http://www.security.unicamp.br/docs/bugs/2006/02/v36.txt
06/02/2006 - GLSA 200602-03
Assunto: Apache: Multiple vulnerabilities.
http://www.security.unicamp.br/docs/bugs/2006/02/v35.txt
06/02/2006 - GLSA 200602-02
Assunto: ADOdb: PostgresSQL command injection.
http://www.security.unicamp.br/docs/bugs/2006/02/v34.txt
05/02/2006 - GLSA 200602-01
Assunto: GStreamer FFmpeg plugin: Heap-based buffer overflow.
http://www.security.unicamp.br/docs/bugs/2006/02/v33.txt
HP Security Bulletin:
=====================
10/02/2006 - HPSBMA02093 SSRT051102 rev.1
Assunto: HP HTTP Server Running on Windows, Forced Use of Weaker Security
Protocol.
http://www.security.unicamp.br/docs/bugs/2006/02/v22.txt
09/02/2006 - HPSBMA02096 SSRT061108 rev.2
Assunto: HP Systems Insight Manager Remote Unauthorized Access - Directory
Traversal.
http://www.security.unicamp.br/docs/bugs/2006/02/v41.txt
09/02/2006 - HPSBTU02095 SSRT051007 rev.2 - HP Tru64 UNIX Running DNS BIND4/
BIND8 with Forwarders: Remote Unauthorized Privileged Access.
http://www.security.unicamp.br/docs/bugs/2006/02/v21.txt
01/02/2006 - HPSBTU02095 SSRT051007 rev.1
Assunto: HP Tru64 UNIX Running DNS BIND Remote Unauthorized Privileged Access.
http://www.security.unicamp.br/docs/bugs/2006/02/v20.txt
KDE Security Advisories:
========================
02/02/2006
Assunto: kpdf/xpdf heap based buffer overflow.
http://www.security.unicamp.br/docs/bugs/2006/02/v31.txt
Mandriva Linux Security Update Advisory:
========================================
08/02/2006 - MDKSA-2006:038
Assunto: groff.
http://www.security.unicamp.br/docs/bugs/2006/02/v19.txt
07/02/2006 - MDKSA-2006:037
Assunto: mozilla-firefox.
http://www.security.unicamp.br/docs/bugs/2006/02/v18.txt
07/02/2006 - MDKSA-2006:036
Assunto: mozilla.
http://www.security.unicamp.br/docs/bugs/2006/02/v17.txt
07/02/2006 - MDKSA-2006:035
Assunto: php.
http://www.security.unicamp.br/docs/bugs/2006/02/v16.txt
06/02/2006 - MDKSA-2006:034
Assunto: openssh.
http://www.security.unicamp.br/docs/bugs/2006/02/v15.txt
02/02/2006 - MDKSA-2006:033
Assunto: OpenOffice.org.
http://www.security.unicamp.br/docs/bugs/2006/02/v14.txt
02/02/2006 - MDKSA-2006:032
Assunto: xpdf.
http://www.security.unicamp.br/docs/bugs/2006/02/v13.txt
02/02/2006 - MDKSA-2006:031
Assunto: kdegraphics.
http://www.security.unicamp.br/docs/bugs/2006/02/v12.txt
02/02/2006 - MDKSA-2006:030
Assunto: poppler.
http://www.security.unicamp.br/docs/bugs/2006/02/v10.txt
02/02/2006 - MDKSA-2006:029
Assunto: libast.
http://www.security.unicamp.br/docs/bugs/2006/02/v11.txt
01/02/2006 - MDKSA-2006:028
Assunto: php.
http://www.security.unicamp.br/docs/bugs/2006/02/v9.txt
SUSE Security Announcement:
===========================
10/02/2006 - SUSE-SA:2006:007
Assunto: binutils, kdelibs3, kdegraphics3, koffice, dia, lyx.
http://www.security.unicamp.br/docs/bugs/2006/02/v40.txt
Trustix Secure Linux Security Advisory:
=======================================
10/02/2006 - #2006-0006
Assunto: fcron, kernel, unzip.
http://www.security.unicamp.br/docs/bugs/2006/02/v39.txt
Ubuntu Security Notice:
=======================
10/02/2006 - USN-247-1
Assunto: heimdal vulnerability.
http://www.security.unicamp.br/docs/bugs/2006/02/v42.txt
US-CERT Technical Cyber Security Alert:
=======================================
07/02/2006 - TA06-038A
Assunto: Multiple Vulnerabilities in Mozilla Products.
http://www.security.unicamp.br/docs/bugs/2006/02/v37.txt
01/02/2006 - TA06-032A
Assunto: Winamp Playlist Buffer Overflow
http://www.security.unicamp.br/docs/bugs/2006/02/v1.txt
- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)
iD8DBQFD8Nd3/UMb1l3gm8IRArNDAKCEzRUPF5Bpfb1MVow1LVnDtgj9FQCgvn3L
YQizYn9E/15ZLSGG+gqogDg=
=bGw9
-----END PGP SIGNATURE-----
Mais detalhes sobre a lista de discussão SECURITY-L