[SECURITY-L] Vulnerabilidades de Seguranca
CSIRT - UNICAMP
security em unicamp.br
Sex Mar 24 16:16:51 -03 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Srs. Assinantes,
Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:
CAIS-Alerta:
============
23/03/2006
Assunto: Ataques de injecao de codigo PHP em aplicacoes diversas
http://www.security.unicamp.br/docs/bugs/2006/03/v114.txt
Debian Security Advisory:
=========================
24/03/2006 - DSA 1019-1
Assunto: koffice
http://www.security.unicamp.br/docs/bugs/2006/03/v124.txt
24/03/2006 - DSA 1018-1
Assunto: kernel-source-2.4.27
http://www.security.unicamp.br/docs/bugs/2006/03/v125.txt
23/03/2006 - DSA 1017-1
Assunto: kernel-source-2.6.8
http://www.security.unicamp.br/docs/bugs/2006/03/v121.txt
23/03/2006 - DSA 1016-1
Assunto: evolution
http://www.security.unicamp.br/docs/bugs/2006/03/v118.txt
23/03/2006 - DSA 1015-1
Assunto: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v116.txt
22/03/2006 - DSA 1013-1
Assunto: snmptrapfmt
http://www.security.unicamp.br/docs/bugs/2006/03/v105.txt
Fedora Legacy Update Advisory:
==============================
23/03/2006 - FLSA:186277
Assunto: Updated sendmail packages fix security issues
http://www.security.unicamp.br/docs/bugs/2006/03/v123.txt
Fedora Update Notification:
===========================
22/03/2006 - FEDORA-2006-194
Assunto: Fedora Core 4: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v107.txt
22/03/2006 - FEDORA-2006-193
Assunto: Fedora Core 5: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v108.txt
FreeBSD Security Advisory:
==========================
22/03/2006 - FreeBSD-SA-06:13.sendmail
Assunto: Race condition in sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v102.txt
22/03/2006 - FreeBSD-SA-06:12.copie
Assunto: OPIE arbitrary password change
http://www.security.unicamp.br/docs/bugs/2006/03/v104.txt
22/03/2006 - FreeBSD-SA-06:11.ipsec
Assunto: IPsec replay attack vulnerability
http://www.security.unicamp.br/docs/bugs/2006/03/v106.txt
Gentoo Linux Security Advisory:
===============================
23/03/2006 - GLSA 200603-23
Assunto: NetHack, Slash'EM, Falcon's Eye: Local privilege escalation
http://www.security.unicamp.br/docs/bugs/2006/03/v120.txt
22/03/2006 - GLSA 200603-22
Assunto: PHP: Format string and XSS vulnerabilities
http://www.security.unicamp.br/docs/bugs/2006/03/v117.txt
22/03/2006 - GLSA 200603-21
Assunto: Sendmail: Race condition in the handling of asynchronous signals
http://www.security.unicamp.br/docs/bugs/2006/03/v119.txt
Mandriva Linux Security Update Advisory:
========================================
23/03/2006 - MDKSA-2006:060
Assunto: freeradius
http://www.security.unicamp.br/docs/bugs/2006/03/v122.txt
22/03/2006 - MDKSA-2006:059
Assunto: kernel
http://www.security.unicamp.br/docs/bugs/2006/03/v115.txt
22/03/2006 - MDKSA-2006:058
Assunto: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v112.txt
OpenPKG Security Advisory:
==========================
22/03/2006 - OpenPKG-SA-2006.007
Assunto: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v111.txt
Slackware Security Advisory:
============================
22/03/2006 - SSA:2006-081-01
Assunto: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v109.txt
SUSE Security Announcement:
===========================
22/03/2006 - SUSE-SA:2006:017
Assunto: sendmail
http://www.security.unicamp.br/docs/bugs/2006/03/v110.txt
Ubuntu Security Notice:
=======================
23/03/2006 - USN-265-1
Assunto: libcairo vulnerability
http://www.security.unicamp.br/docs/bugs/2006/03/v113.txt
US-CERT Technical Cyber Security Alert:
=======================================
22/03/2006 - TA06-081A
Assunto: Sendmail Race Condition Vulnerability
http://www.security.unicamp.br/docs/bugs/2006/03/v103.txt
- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)
iD8DBQFEJEVW/UMb1l3gm8IRAnbuAKCtk+Bqv5r12xIRXodFvaRYBZrOJwCfRF/7
zTaOrbj2SdYD3URrR+8Mv/0=
=HIro
-----END PGP SIGNATURE-----
Mais detalhes sobre a lista de discussão SECURITY-L