From security em unicamp.br  Thu May  4 09:55:09 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Thu, 4 May 2006 09:55:09 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060504125509.GA64406@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:

Cisco Security Advisory:
========================
02/05/2006 - Cisco Security Advisory
Assunto: Cisco Unity Express Expired Password Reset Privilege Escalation
http://www.security.unicamp.br/docs/bugs/2006/05/v007.txt

Debian Security Advisory:
=========================
02/05/2006 - DSA 1050-1 
Assunto: clamav 
http://www.security.unicamp.br/docs/bugs/2006/05/v011.txt

02/05/2006 - DSA 1049-1 
Assunto: ethereal 
http://www.security.unicamp.br/docs/bugs/2006/05/v005.txt

01/05/2006 - DSA 1048-1 
Assunto: asterisk
http://www.security.unicamp.br/docs/bugs/2006/04/v002.txt

30/04/2006 - DSA 1047-1 
Assunto: resmgr 
http://www.security.unicamp.br/docs/bugs/2006/04/v135.txt

Gentoo Linux Security Advisory:
===============================
02/05/2006 - GLSA 200605-04 
Assunto: phpWebSite: Local file inclusion
http://www.security.unicamp.br/docs/bugs/2006/05/v004.txt

02/05/2006 - GLSA 200605-03 
Assunto: ClamAV: Buffer overflow in Freshclam
http://www.security.unicamp.br/docs/bugs/2006/05/v003.txt

02/05/2006 - GLSA 200605-02 
Assunto: X.Org: Buffer overflow in XRender extension 
http://www.security.unicamp.br/docs/bugs/2006/05/v008.txt

01/05/2006 - GLSA 200605-01 
Assunto: MPlayer: Heap-based buffer overflow
http://www.security.unicamp.br/docs/bugs/2006/05/v001.txt

28/04/2006 - GLSA 200604-18 
Assunto: Mozilla Suite: Multiple vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/04/v133.txt

Mandriva Linux Security Update Advisory:
========================================
03/05/2006 - MDKSA-2006:082 
Assunto: libtiff 
http://www.security.unicamp.br/docs/bugs/2006/05/v016.txt

02/05/2006 - MDKSA-2006:081 
Assunto: xorg-x11 
http://www.security.unicamp.br/docs/bugs/2006/05/v009.txt

01/05/2006 - MDKSA-2006:080 
Assunto: clamav
http://www.security.unicamp.br/docs/bugs/2006/05/v006.txt

Slackware Security Advisory:
============================
04/05/2006 - SSA:2006-123-02 
Assunto: firefox 
http://www.security.unicamp.br/docs/bugs/2006/05/v018.txt

03/05/2006 - SSA:2006-123-01 
Assunto: xorg server overflow
http://www.security.unicamp.br/docs/bugs/2006/05/v013.txt

30/04/2006 - SSA:2006-120-01 
Assunto: thunderbird 
http://www.security.unicamp.br/docs/bugs/2006/04/v134.txt

SUSE Security Announcement:
===========================
03/05/2006 - SUSE-SA:2006:023 
Assunto: xorg-x11-server
http://www.security.unicamp.br/docs/bugs/2006/05/v014.txt

Ubuntu Security Notice:
=======================
03/05/2006 - USN-279-1 
Assunto: libnasl vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v015.txt

03/05/2006 - USN-278-1 
Assutno: gdm vulnerabilitiy 
http://www.security.unicamp.br/docs/bugs/2006/05/v017.txt

03/05/2006 - USN-277-1 
Assunto: TIFF library vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v012.txt

03/05/2006 - USN-276-1 
Assunto: Thunderbird vulnerabilities
http://www.security.unicamp.br/docs/bugs/2006/05/v010.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEWflt/UMb1l3gm8IRAlb0AKDx4n1XwSMswu4S2MZewwLNZJh5fwCfRhcm
RQYTTt1m8tRm5H1wrlX/SV0=
=HS1X
-----END PGP SIGNATURE-----


From security em unicamp.br  Thu May  4 15:54:22 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Thu, 4 May 2006 15:54:22 -0300
Subject: [SECURITY-L] Dica interessante: site "Navegue protegido"
Message-ID: <20060504185422.GA70057@unicamp.br>

Fonte: Grupo de Trabalho em Segurança de Redes <gts-l em eng.registro.br>
Data: 04/05/2006

"Interessante a ideia:

A Microsoft, em parceria com a Ricky Martin Foundation e o apoio de parceiros 
como a Symantec e Serpro, criou o programa Navegue Protegido, um guia para 
navegação segura voltado para pais, filhos e professores.
Conheça e divulgue para amigos e parentes este site e proteja quem você gosta.
http://www.navegueprotegido.org/"



Atenciosamente,
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security em unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc



From security em unicamp.br  Mon May  8 14:48:54 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Mon, 8 May 2006 14:48:54 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060508174854.GA40688@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Debian Security Advisory:
=========================
04/05/2006 - DSA 1051-1 
Assunto: mozilla-thunderbird 
http://www.security.unicamp.br/docs/bugs/2006/05/v019.txt

Gentoo Linux Security Advisory:
===============================
06/05/2006 - GLSA 200605-06 
Assunto: Mozilla Firefox: Potential remote code execution 
http://www.security.unicamp.br/docs/bugs/2006/05/v025.txt

06/05/2006 - GLSA 200605-05 
Assunto: rsync: Potential integer overflow 
http://www.security.unicamp.br/docs/bugs/2006/05/v024.txt

HP Security Bulletin:
=====================
04/05/2006 - HPSBUX02108 SSRT061133 rev.10 
Assunto: HP-UX running Sendmail, Remote Execution of Arbitrary Code
http://www.security.unicamp.br/docs/bugs/2006/05/v020.txt

Mandriva Linux Security Update Advisory:
========================================
04/05/2006 - MDKSA-2006:081-1 
Assunto: xorg-x11 
http://www.security.unicamp.br/docs/bugs/2006/05/v022.txt

Trustix Secure Linux Security Advisory:
=======================================
05/05/2006 - #2006-0024 
Assunto: clamav, cyrus-sasl, kernel, libtiff, rsync, xorg-x11
http://www.security.unicamp.br/docs/bugs/2006/05/v023.txt

Ubuntu Security Notice:
=======================
04/05/2006 - USN-281-1 
Assunto: Linux kernel vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v021.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEX4P4/UMb1l3gm8IRAsOdAJ9CwH3pF9SVrDf5hKi6XQAqUxB1qwCdF6od
32B1IQiK7NsSQW6PMRC+lvs=
=IvLN
-----END PGP SIGNATURE-----


From security em unicamp.br  Wed May 10 16:33:49 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Wed, 10 May 2006 16:33:49 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060510193349.GA85281@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Debian Security Advisory:
=========================
09/05/2006 - DSA 1054-1 
Assunto: tiff 
http://www.security.unicamp.br/docs/bugs/2006/05/v033.txt

09/05/2006 - DSA 1053-1 
Assunto: mozilla 
http://www.security.unicamp.br/docs/bugs/2006/05/v032.txt

08/05/2006 - DSA 1052-1 
Assunto: cgiirc 
http://www.security.unicamp.br/docs/bugs/2006/05/v028.txt

Gentoo Linux Security Advisory:
===============================
10/05/2006 - GLSA 200605-12 
Assunto: Quake 3 engine based games: Buffer Overflow 
http://www.security.unicamp.br/docs/bugs/2006/05/v041.txt

10/05/2006 - GLSA 200605-11 
Assunto: Ruby: Denial of Service 
http://www.security.unicamp.br/docs/bugs/2006/05/v040.txt

10/05/2006 - GLSA 200605-10 
Assunto: pdnsd: Denial of Service and potential arbitrary code execution 
http://www.security.unicamp.br/docs/bugs/2006/05/v038.txt

08/05/2006 - GLSA 200605-09 
Assunto: Mozilla Thunderbird: Multiple vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v031.txt

08/05/2006 - GLSA 200605-08 
Assunto: PHP: Multiple vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v030.txt

07/05/2006 - GLSA 200605-07 
Assunto: Nagios: Buffer overflow 
http://www.security.unicamp.br/docs/bugs/2006/05/v026.txt

Mandriva Linux Security Update Advisory:
========================================
10/05/2006 - MDKSA-2006:084 
Assunto: MySQL 
http://www.security.unicamp.br/docs/bugs/2006/05/v042.txt

Microsoft Security Bulletins:
=============================
09/05/2006 
Assunto: Microsoft Security Bulletin Summary for May
http://www.security.unicamp.br/docs/bugs/2006/05/v037.txt

Slackware Security Advisory:
============================
09/05/2006 - SSA:2006-129-02 
Assunto: MySQL 
http://www.security.unicamp.br/docs/bugs/2006/05/v036.txt

09/05/2006 - SSA:2006-129-01 
Assunto: Apache httpd 
http://www.security.unicamp.br/docs/bugs/2006/05/v035.txt

Ubuntu Security Notice:
=======================
08/05/2006 - USN-283-1 
Assunto: MySQL vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v027.txt

08/05/2006 - USN-282-1 
Assunto: Nagios vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v029.txt

US-CERT Technical Cyber Security Alert:
=======================================
09/05/2006 - TA06-129A 
Assunto: Microsoft Windows and Exchange Server Vulnerabilities
http://www.security.unicamp.br/docs/bugs/2006/05/v034.txt




- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEYj/o/UMb1l3gm8IRAu3RAKDt/Q8PKy2fbDwZLpmsoUBcsvTdUACgpcP6
BlJlOrcC1/ZSu2rkcOQvimM=
=qJQT
-----END PGP SIGNATURE-----


From security em unicamp.br  Fri May 12 17:11:20 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Fri, 12 May 2006 17:11:20 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060512201120.GA27866@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


CAIS-Alerta:
============
10/05/2006 - CAIS-Alerta
Assunto: Vulnerabilidades no Macromedia Flash Player
http://www.security.unicamp.br/docs/bugs/2006/05/v045.txt

10/05/2006 - CAIS-Alerta
Assunto: Vulnerabilidade no Microsoft Exchange
http://www.security.unicamp.br/docs/bugs/2006/05/v044.txt

10/05/2006 - CAIS-Alerta
Assunto: Vulnerabilidade no Coordenador de Transacoes Distribuidas da Microsoft
http://www.security.unicamp.br/docs/bugs/2006/05/v043.txt

Cisco Security Advisory:
========================
10/05/2006 - Cisco Security Advisory
Assunto: AVS TCP Relay Vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v047.txt

Debian Security Advisory:
=========================
11/05/2006 - DSA 1055-1 
Assunto: mozilla-firefox 
http://www.security.unicamp.br/docs/bugs/2006/05/v048.txt

Gentoo Linux Security Advisory:
===============================
11/05/2006 - GLSA 200605-13 
Assunto: MySQL: Information leakage 
http://www.security.unicamp.br/docs/bugs/2006/05/v050.txt

Mandriva Linux Security Update Advisory:
========================================
10/05/2006 - MDKSA-2006:085 
Assunto: xine-ui 
http://www.security.unicamp.br/docs/bugs/2006/05/v049.txt

Slackware Security Advisory:
============================
10/05/2006 - SSA:2006-130-01 
Assunto: Apache httpd redux 
http://www.security.unicamp.br/docs/bugs/2006/05/v046.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEZOua/UMb1l3gm8IRAgdMAKDU4sAr/gAY3KdH3O1Rn3MGKX1ENgCfSysa
mQRuTorIE+m207R9oCxm6Ks=
=N7vV
-----END PGP SIGNATURE-----


From security em unicamp.br  Tue May 16 09:55:57 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Tue, 16 May 2006 09:55:57 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060516125557.GA33085@unicamp.br>


Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Debian Security Advisory:
=========================
15/05/2006 - DSA 1057-1 
Assunto: phpldapadmin 
http://www.security.unicamp.br/docs/bugs/2006/05/v060.txt

15/05/2006 - DSA 1056-1 
Assunto: webcalendar 
http://www.security.unicamp.br/docs/bugs/2006/05/v062.txt

Fedora Legacy Update Advisory:
==============================
12/05/2006 - FLSA:164512 
Assunto: Updated fetchmail package fix security issues 
http://www.security.unicamp.br/docs/bugs/2006/05/v059.txt

12/05/2006 - FLSA:152923 
Assunto: Updated xloadimage package fixes security issues 
http://www.security.unicamp.br/docs/bugs/2006/05/v058.txt

12/05/2006 - FLSA:152904 
Assunto: Updated ncpfs package fixes security issues 
http://www.security.unicamp.br/docs/bugs/2006/05/v057.txt

12/05/2006 - FLSA:185355 
Assunto: Updated gnupg package fixes security issues 
http://www.security.unicamp.br/docs/bugs/2006/05/v056.txt

12/05/2006 - FLSA:152868 
Assunto: Updated tetex packages fix security issues 
http://www.security.unicamp.br/docs/bugs/2006/05/v055.txt

12/05/2006 - FLSA:152898 
Assunto: Updated emacs packages fix a security issue
http://www.security.unicamp.br/docs/bugs/2006/05/v054.txt

Trustix Secure Linux Security Advisory:
=======================================
12/05/2006 - #2006-0026 
Assunto: kernel 
http://www.security.unicamp.br/docs/bugs/2006/05/v051.txt

Ubuntu Security Notice:
=======================
15/05/2006 - USN-284-1 
Assunto: Quagga Vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v063.txt

15/05/2006 - USN-274-2 
Assunto: MySQL-dfsg vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v061.txt

US-CERT Technical Cyber Security Alert:
=======================================
12/05/2006 - TA06-132B 
Assunto: Apple QuickTime Vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v053.txt

12/05/2006 - TA06-132A  
Assunto: Apple Mac Products Affected by Multiple Vulnerabilities
http://www.security.unicamp.br/docs/bugs/2006/05/v052.txt


--
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc



From security em unicamp.br  Fri May 19 15:36:52 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Fri, 19 May 2006 15:36:52 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060519183652.GA668@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


CAIS-Alerta:
============
17/05/2006 - CAIS-Alerta
Assunto: Fraude envolvendo nome do registro.br 
http://www.security.unicamp.br/docs/bugs/2006/05/v066.txt

Debian Security Advisory:
=========================
18/05/2006 - DSA 1058-1 
Assunto: awsats 
http://www.security.unicamp.br/docs/bugs/2006/05/v067.txt

Gentoo Linux Security Advisory:
===============================
16/05/2006 - GLSA 200605-07:02 
Assunto: Nagios: Buffer overflow 
http://www.security.unicamp.br/docs/bugs/2006/05/v064.txt

15/05/2006 - GLSA 200605-13:04 
Assunto: MySQL: Information leakage 
http://www.security.unicamp.br/docs/bugs/2006/05/v065.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEbhAK/UMb1l3gm8IRAl3JAJ4sEWkG4uyoky3iXd05Pajo6KYIDgCgh3A0
p/DLgjMUXeHRM/gL5y1/O3Y=
=7nG6
-----END PGP SIGNATURE-----


From security em unicamp.br  Mon May 22 11:03:22 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Mon, 22 May 2006 11:03:22 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060522140320.GA50115@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Debian Security Advisory:
=========================
20/05/2006 - DSA 1068-1 
Assunto: fbi 
http://www.security.unicamp.br/docs/bugs/2006/05/v082.txt

20/05/2006 - DSA 1067-1 
Assunto: kernel-source-2.4.16,kernel-image-2.4.16-lart,kernel-image-2.4.16-riscpc,kernel-image-2.4.16-netwinder
http://www.security.unicamp.br/docs/bugs/2006/05/v080.txt

20/05/2006 - DSA 1066-1 
Assunto: phpbb2 
http://www.security.unicamp.br/docs/bugs/2006/05/v078.txt

19/05/2006 - DSA 1065-1 
Assunto: hostapd 
http://www.security.unicamp.br/docs/bugs/2006/05/v079.txt

19/05/2006 - DSA 1064-1 
Assunto: cscope 
http://www.security.unicamp.br/docs/bugs/2006/05/v081.txt

19/05/2006 - DSA 1063-1 
Assunto: phpgroupware 
http://www.security.unicamp.br/docs/bugs/2006/05/v076.txt

19/05/2006 - DSA 1062-1 
Assunto: kphone
http://www.security.unicamp.br/docs/bugs/2006/05/v069.txt

19/05/2006 - DSA 1061-1 
Assunto: popfile 
http://www.security.unicamp.br/docs/bugs/2006/05/v071.txt

19/05/2006 - DSA 1060-1 
Assunto: kernel-patch-vserver 
http://www.security.unicamp.br/docs/bugs/2006/05/v070.txt

19/05/2006 - DSA 1059-1 
Assunto: quagga 
http://www.security.unicamp.br/docs/bugs/2006/05/v075.txt

HP Security Bulletin:
=====================
19/05/2006 - HPSBTU02118 SSRT061145 rev.1 
Assunto: HP Tru64 UNIX Running Firefox or Mozilla Application Suite, Remote Execution of Arbitrary Code or Denial of Service (DoS) 
http://www.security.unicamp.br/docs/bugs/2006/05/v074.txt

19/05/2006 - HPSBUX02117 SSRT2400 rev.11 
Assunto: HP-UX Running BINDv4 Domain Name Server (DNS) Remote Unauthorized Access, Denial of Service (DoS) 
http://www.security.unicamp.br/docs/bugs/2006/05/v073.txt

19/05/2006 - HPSBUX02108 SSRT061133 rev.11 
Assunto: HP-UX running Sendmail, Remote Execution of Arbitrary Code 
http://www.security.unicamp.br/docs/bugs/2006/05/v072.txt

Mandriva Linux Security Update Advisory:
========================================
18/05/2006 - MDKSA-2006:086 
Assunto: kernel 
http://www.security.unicamp.br/docs/bugs/2006/05/v068.txt

US-CERT Technical Cyber Security Alert:
=======================================
19/05/2006 - TA06-139A 
Assunto: Microsoft Word Vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v077.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEccR2/UMb1l3gm8IRAoLqAJ0QJYIgzCNI2oTnnP2rEU1XOHgCVgCfad2D
I+uPsBPOMNQyByUkDyZ0ePI=
=fspV
-----END PGP SIGNATURE-----


From security em unicamp.br  Tue May 23 17:21:54 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Tue, 23 May 2006 17:21:54 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060523202154.GA77673@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Debian Security Advisory:
=========================
22/05/2006 - DSA 1073-1 
Assunto: mysql-dfsg-4.1 
http://www.security.unicamp.br/docs/bugs/2006/05/v084.txt

22/05/2006 - DSA 1071-1 
Assunto: mysql 
http://www.security.unicamp.br/docs/bugs/2006/05/v091.txt

22/05/2006 - DSA 1072-1 
Assunto: nagios 
http://www.security.unicamp.br/docs/bugs/2006/05/v085.txt

21/05/2006 - DSA 1070-1 
Assunto: kernel-source 
http://www.security.unicamp.br/docs/bugs/2006/05/v086.txt

20/05/2006 - DSA 1069-1 
Assunto: kernel-source 
http://www.security.unicamp.br/docs/bugs/2006/05/v083.txt

Gentoo Linux Security Advisory:
===============================
21/05/2006 - GLSA 200605-15 
Assunto: Quagga Routing Suite: Multiple vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v090.txt

21/05/2006 - GLSA 200605-14 
Assunto: libextractor: Two heap-based buffer overflows 
http://www.security.unicamp.br/docs/bugs/2006/05/v089.txt

HP Security Bulletin:
=====================
22/05/2006 - HPSBUX02120 SSRT051057 rev.1 
Assunto: HP-UX Local Denial of Service (DoS) 
http://www.security.unicamp.br/docs/bugs/2006/05/v093.txt

22/05/2006 - HPSBUX02119 SSRT4848 rev.1 
Assunto: HP-UX Running Motif Applications Remote Arbitrary Code Execution, Denial of Service (DoS)
http://www.security.unicamp.br/docs/bugs/2006/05/v092.txt

Slackware Security Advisory:
============================
22/05/2006 - SSA:2006-142-02 
Assunto: zoo archiver overflow 
http://www.security.unicamp.br/docs/bugs/2006/05/v087.txt

22/05/2006 - SSA:2006-142-01 
Assunto: tetex PDF security 
http://www.security.unicamp.br/docs/bugs/2006/05/v088.txt

Trustix Secure Linux Security Advisory:
=======================================
19/05/2006 - #2006-0028 
Assunto: kernel, mysql 
http://www.security.unicamp.br/docs/bugs/2006/05/v094.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEc266/UMb1l3gm8IRAp3hAJwL3pkuAAwrk9C8/Ld/1fhdwFm/PwCfd00z
5MDUy+Wevj7ZlcU9DDqefs0=
=t/pD
-----END PGP SIGNATURE-----


From security em unicamp.br  Fri May 26 15:35:52 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Fri, 26 May 2006 15:35:52 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060526183552.GA22712@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Cisco Security Advisory:
========================
24/05/2006 - Cisco Security Advisory
Assunto: Windows VPN Client Local Privilege Escalation Vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v106.txt

Debian Security Advisory:
=========================
24/05/2006 - DSA 1074-1 
Assunto: mpg123 
http://www.security.unicamp.br/docs/bugs/2006/05/v103.txt

HP Security Bulletin:
=====================
23/05/2006 - HPSBMA02098 SSRT5911 rev.1 
Assunto: HP OpenView Network Node Manager (OV NNM) Remote Unauthorized Privileged Access, Arbitrary Command Execution, Arbitrary File Creation 
http://www.security.unicamp.br/docs/bugs/2006/05/v100.txt

23/05/2006 - HPSBMA02121 SSRT061157 rev.1 
Assunto: HP OpenView Storage Data Protector Remote Arbitrary Command Execution 
http://www.security.unicamp.br/docs/bugs/2006/05/v099.txt

23/05/2006 - HPSBUX02114 SSRT061115 rev.1
Assunto: HP-UX Running Software Distributor LocalElevation of Privilege 
http://www.security.unicamp.br/docs/bugs/2006/05/v098.txt

23/05/2006 - HPSBUX02075 SSRT051074 rev.5 
Assunto: HP-UX Running xterm Local Unauthorized Access 
http://www.security.unicamp.br/docs/bugs/2006/05/v096.txt

Mandriva Linux Security Update Advisory:
========================================
24/05/2006 - MDKSA-2006:091 
Assunto: php 
http://www.security.unicamp.br/docs/bugs/2006/05/v107.txt

24/05/2006 - MDKSA-2006:090 
Assunto: shadow-utils 
http://www.security.unicamp.br/docs/bugs/2006/05/v105.txt

24/05/2006 - MDKSA-2006:089 
Assunto: kphone 
http://www.security.unicamp.br/docs/bugs/2006/05/v104.txt

24/05/2006 - MDKSA-2006:088 
Assunto: hostapd 
http://www.security.unicamp.br/docs/bugs/2006/05/v101.txt

24/05/2006 - MDKSA-2006:087 
Assunto: kernel 
http://www.security.unicamp.br/docs/bugs/2006/05/v102.txt

OpenPKG Security Advisory:
==========================
22/05/2006 - OpenPKG-SA-2006.008 
Assunto: openldap
http://www.security.unicamp.br/docs/bugs/2006/05/v095.txt

Ubuntu Security Notice:
=======================
24/05/2006 - USN-286-1 
Assunto: dia vulnerability 
http://www.security.unicamp.br/docs/bugs/2006/05/v108.txt

23/05/2006 - USN-285-1 
Assunto: awstats vulnerability
http://www.security.unicamp.br/docs/bugs/2006/05/v097.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEd0pE/UMb1l3gm8IRApvJAJ9r5JHI2P8YIndsqvr1jrSL9CgZlgCeIV6k
HK8GSGjKiM4THDPuR3R+Gnk=
=rdE3
-----END PGP SIGNATURE-----


From security em unicamp.br  Tue May 30 12:51:58 2006
From: security em unicamp.br (CSIRT - UNICAMP)
Date: Tue, 30 May 2006 12:51:58 -0300
Subject: [SECURITY-L] Vulnerabilidades de Seguranca
Message-ID: <20060530155156.GA3364@unicamp.br>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Srs. Assinantes,

Atualizamos o site do CSIRT (Computer Security Incident Response Team) da Unicamp
com os seguintes boletins de vulnerabilidades:


Debian Security Advisory:
=========================
29/05/2006 - DSA 1082-1 
Assunto: New Linux kernel 2.4.17 packages fix several vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v121.txt

29/05/2006 - DSA 1081-1 
Assunto: libextractor 
http://www.security.unicamp.br/docs/bugs/2006/05/v116.txt

29/05/2006 - DSA 1080-1 
Assunto: dovecot 
http://www.security.unicamp.br/docs/bugs/2006/05/v119.txt

29/05/2006 - DSA 1079-1 
Assunto: mysql-dfsg 
http://www.security.unicamp.br/docs/bugs/2006/05/v118.txt

27/05/2006 - DSA 1078-1 
Assunto: tiff 
http://www.security.unicamp.br/docs/bugs/2006/05/v115.txt

26/05/2006 - DSA 1077-1 
Assunto: lynx-ssl 
http://www.security.unicamp.br/docs/bugs/2006/05/v111.txt

26/05/2006 - DSA 1076-1 
Assunto: lynx 
http://www.security.unicamp.br/docs/bugs/2006/05/v110.txt

26/05/2006 - DSA 1075-1 
Assunto: awstats 
http://www.security.unicamp.br/docs/bugs/2006/05/v112.txt

Mandriva Linux Security Update Advisory:
========================================
26/05/2006 - MDKSA-2006:092 
Assunto: mpg123 
http://www.security.unicamp.br/docs/bugs/2006/05/v113.txt

OpenPKG Security Advisory:
==========================
26/05/2006 - OpenPKG-SA-2006.009 
Assunto: binutils 
http://www.security.unicamp.br/docs/bugs/2006/05/v114.txt

Trustix Secure Linux Security Advisory:
=======================================
26/05/2006 - #2006-0030 
Assunto:  kernel, quagga 
http://www.security.unicamp.br/docs/bugs/2006/05/v109.txt

Ubuntu Security Notice:
=======================
29/05/2006 - USN-288-1 
Assunto: PostgreSQL server/client vulnerabilities 
http://www.security.unicamp.br/docs/bugs/2006/05/v117.txt

29/05/2006 - USN-287-1 
Assunto: nagios 
http://www.security.unicamp.br/docs/bugs/2006/05/v120.txt

- --
Computer Security Incident Response Team - CSIRT
Universidade Estadual de Campinas - UNICAMP
mailto:security at unicamp.br
http://www.security.unicamp.br
GnuPG Public Key: http://www.security.unicamp.br/security.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)

iD8DBQFEfGnz/UMb1l3gm8IRAl7pAKCnw30muonSrFAFGzt0v4IhJ9eCWACg5nk2
hkqRNNMLyzgmvcb+aiGKheE=
=OmKy
-----END PGP SIGNATURE-----