[SECURITY-L] Vulnerabilidades de seguranca

Qui Fev 16 11:42:43 -02 2006

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:

Anúncio de Segurança do Conectiva Linux:
========================================
16/02/2006 - CLA-2006:1064
Assunto: Nova versao do Clamav.
http://www.security.unicamp.br/docs/bugs/2006/02/v78.txt

CAIS-Alerta:
============
14/02/2006
Assunto: Vulnerabilidade no Microsoft Powerpoint 2000 (MS06-010). 
http://www.security.unicamp.br/docs/bugs/2006/02/v58.txt

14/02/2006
Assunto: Vulnerabilidade no servico Web Client (MS06-008). 
http://www.security.unicamp.br/docs/bugs/2006/02/v57.txt

14/02/2006
Assunto: Vulnerabilidade no IME do idioma Coreano (MS06-009). 
http://www.security.unicamp.br/docs/bugs/2006/02/v56.txt

14/02/2006
Assunto: Vulnerabilidade no Windows Media Player (MS06-005). 
http://www.security.unicamp.br/docs/bugs/2006/02/v55.txt

14/02/2006
Assunto: Vulnerabilidade na implementacao do protocolo TCP/IP (MS06-007). 
http://www.security.unicamp.br/docs/bugs/2006/02/v54.txt

14/02/2006
Assunto: Vulnerabilidade no Plug-in Windows Media Player (MS06-006). 
http://www.security.unicamp.br/docs/bugs/2006/02/v53.txt

14/02/2006
Assunto: Atualizacoes de seguranca para o Internet Explorer (MS06-004). 
http://www.security.unicamp.br/docs/bugs/2006/02/v52.txt

14/02/2006
Assunto: Termino do Horario de Verao 2005/2006. 
http://www.security.unicamp.br/docs/bugs/2006/02/v51.txt

Cisco Security Advisory:
========================
15/02/2006
Assunto: TACACS+ Authentication Bypass in Cisco Anomaly Detection and
Mitigation Products.
http://www.security.unicamp.br/docs/bugs/2006/02/v63.txt

Debian Security Advisory:
=========================
15/02/2006 - DSA 974-1
Assunto: gpdf. 
http://www.security.unicamp.br/docs/bugs/2006/02/v77.txt

15/02/2006 - DSA 976-1
Assunto: libast, libast1. 
http://www.security.unicamp.br/docs/bugs/2006/02/v49.txt

15/02/2006 - DSA 975-1
Assunto: nfs-user-server.
http://www.security.unicamp.br/docs/bugs/2006/02/v50.txt

14/02/2006 - DSA 971-1
Assunto: xpdf. 
http://www.security.unicamp.br/docs/bugs/2006/02/v48.txt

14/02/2006 - DSA 970-1
Assunto: kronolith. 
http://www.security.unicamp.br/docs/bugs/2006/02/v47.txt

13/02/2006 - DSA 969-1
Assunto: scponly. 
http://www.security.unicamp.br/docs/bugs/2006/02/v46.txt

13/02/2006 - DSA 968-1
Assunto: noweb. 
http://www.security.unicamp.br/docs/bugs/2006/02/v45.txt

Gentoo Linux Security Advisory:
===============================
15/02/2006 - GLSA 200602-07
Assunto: Sun JDK/JRE: Applet privilege escalation. 
http://www.security.unicamp.br/docs/bugs/2006/02/v64.txt

13/02/2006 - GLSA 200602-06
Assunto: ImageMagick: Format string vulnerability. 
http://www.security.unicamp.br/docs/bugs/2006/02/v44.txt

12/02/2006 - GLSA 200602-05
Assunto: KPdf: Heap based overflow. 
http://www.security.unicamp.br/docs/bugs/2006/02/v43.txt

HP Security Bulletin:
=====================
15/02/2006 - HPSBUX02097 SSRT051045 rev.2
Assunto: HP-UX Running DNS BIND4/BIND8 as Forwarders: Remote 
Unauthorized Privileged Access. 
http://www.security.unicamp.br/docs/bugs/2006/02/v62.txt

15/02/2006 - HPSBMA02096 SSRT061108 rev.3
Assunto: HP Systems Insight Manager Remote Unauthorized Access via 
Directory Traversal. 
http://www.security.unicamp.br/docs/bugs/2006/02/v61.txt

Mandriva Linux Security Update Advisory:
========================================
13/02/2006 - MDKSA-2006:039
Assunto: gnutls. 
http://www.security.unicamp.br/docs/bugs/2006/02/v60.txt

Slackware Security Advisory:
============================
14/02/2006 - SSA:2006-045-09
Assunto: xpdf. 
http://www.security.unicamp.br/docs/bugs/2006/02/v73.txt

14/02/2006 - SSA:2006-045-08
Assunto: sudo. 
http://www.security.unicamp.br/docs/bugs/2006/02/v72.txt

14/02/2006 - SSA:2006-045-07
Assunto: php. 
http://www.security.unicamp.br/docs/bugs/2006/02/v71.txt

14/02/2006 - SSA:2006-045-06
Assunto: openssh. 
http://www.security.unicamp.br/docs/bugs/2006/02/v70.txt

14/02/2006 - SSA:2006-045-05
Assunto: kdelibs. 
http://www.security.unicamp.br/docs/bugs/2006/02/v67.txt

14/02/2006 - SSA:2006-045-04
Assunto: kdegraphics. 
http://www.security.unicamp.br/docs/bugs/2006/02/v69.txt

14/02/2006 - SSA:2006-045-03
Assunto: imagemagick. 
http://www.security.unicamp.br/docs/bugs/2006/02/v66.txt

14/02/2006 - SSA:2006-045-02
Assunto: firefox.
http://www.security.unicamp.br/docs/bugs/2006/02/v65.txt

14/02/2006 - SSA:2006-045-01
Assunto: fetchmail.
http://www.security.unicamp.br/docs/bugs/2006/02/v68.txt

Ubuntu Security Notice:
=======================
15/02/2006 - USN-248-2
Assunto: unzip regression fix. 
http://www.security.unicamp.br/docs/bugs/2006/02/v75.txt 

13/02/2006 - USN-248-1
Assunto: unzip vulnerability. 
http://www.security.unicamp.br/docs/bugs/2006/02/v76.txt 

13/02/2006 - USN-250-1
Assunto: linux-source-2.6.12 vulnerability. 
http://www.security.unicamp.br/docs/bugs/2006/02/v74.txt 

US-CERT Technical Cyber Security Alert:
=======================================
14/02/2006 - TA06-045A
Assunto: Microsoft Windows, Windows Media Player, and Internet 
Explorer Vulnerabilities.
http://www.security.unicamp.br/docs/bugs/2006/02/v59.txt 

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFD9IEd/UMb1l3gm8IRAkf9AKDZX733S5wR0cJuIChoLZQw5/yPowCgtrl+
sL1WFQ/F+NSYOjY93wDa7Uc=
=U4Yo
-----END PGP SIGNATURE-----