Informações sobre segurança / Alertas de Segurança de 2005

Alertas de Segurança de 2005

[27 Dez 2005] DSA-928 dhis-tools-dns - arquivos temporários inseguros
[27 Dez 2005] DSA-927 tkdiff - arquivos temporários inseguros
[23 Dez 2005] DSA-926 ketm - estouro de pilha
[22 Dez 2005] DSA-925 phpbb2 - várias vulnerabilidades
[21 Dez 2005] DSA-924 nbd - estouro de pilha
[19 Dez 2005] DSA-923 dropbear - buffer overflow
[14 Dez 2005] DSA-922 kernel-source-2.6.8 - several vulnerabilities
[14 Dez 2005] DSA-921 kernel-source-2.4.27 - several vulnerabilities
[13 Dez 2005] DSA-920 ethereal - buffer overflow
[12 Dez 2005] DSA-919 curl - buffer overflow
[09 Dez 2005] DSA-918 osh - programming error
[08 Dez 2005] DSA-917 courier - programming error
[07 Dez 2005] DSA-916 inkscape - buffer overflow
[02 Dez 2005] DSA-915 helix-player - buffer overflow
[01 Dez 2005] DSA-914 horde2 - missing input sanitising
[01 Dez 2005] DSA-913 gdk-pixbuf - several vulnerabilities
[30 Nov 2005] DSA-912 centericq - negação de serviço
[29 Nov 2005] DSA-911 gtk+2.0 - several vulnerabilities
[24 Nov 2005] DSA-910 zope.2.7 - design error
[23 Nov 2005] DSA-909 horde3 - missing input sanitising
[23 Nov 2005] DSA-908 sylpheed-claws - buffer overflows
[23 Nov 2005] DSA-907 ipmenu - insecure temporary file
[22 Nov 2005] DSA-906 sylpheed - buffer overflows
[22 Nov 2005] DSA-905 mantis - several vulnerabilities
[21 Nov 2005] DSA-904 netpbm-free - buffer overflows
[21 Nov 2005] DSA-903 unzip - race condition
[21 Nov 2005] DSA-902 xmail - buffer overflow
[19 Nov 2005] DSA-901 gnump3d - programming error
[18 Nov 2005] DSA-900 fetchmail - programming error
[17 Nov 2005] DSA-899 egroupware - programming errors
[17 Nov 2005] DSA-898 phpgroupware - programming errors
[15 Nov 2005] DSA-897 phpsysinfo - programming errors
[15 Nov 2005] DSA-896 linux-ftpd-ssl - buffer overflow
[14 Nov 2005] DSA-895 uim - programming error
[14 Nov 2005] DSA-894 abiword - buffer overflows
[14 Nov 2005] DSA-893 acidlab - missing input sanitising
[10 Nov 2005] DSA-892 awstats - missing input sanitising
[09 Nov 2005] DSA-891 gpsdrive - format string
[09 Nov 2005] DSA-890 libungif4 - several vulnerabilities
[08 Nov 2005] DSA-889 enigmail - programming error
[07 Nov 2005] DSA-888 openssl - cryptographic weakness
[07 Nov 2005] DSA-887 clamav - several vulnerabilities
[07 Nov 2005] DSA-886 chmlib - several vulnerabilities
[07 Nov 2005] DSA-885 openvpn - several vulnerabilities
[07 Nov 2005] DSA-884 horde3 - design error
[04 Nov 2005] DSA-883 thttpd - insecure temporary file
[04 Nov 2005] DSA-882 openssl095 - cryptographic weakness
[04 Nov 2005] DSA-881 openssl096 - cryptographic weakness
[02 Nov 2005] DSA-880 phpmyadmin - several vulnerabilities
[02 Nov 2005] DSA-879 gallery - programming error
[28 Out 2005] DSA-878 netpbm-free - buffer overflow
[28 Out 2005] DSA-877 gnump3d - cross-site scripting, directory traversal
[27 Out 2005] DSA-876 lynx-ssl - buffer overflow
[27 Out 2005] DSA-875 openssl094 - cryptographic weakness
[27 Out 2005] DSA-874 lynx - buffer overflow
[26 Out 2005] DSA-873 net-snmp - programming error
[26 Out 2005] DSA-872 koffice - buffer overflow
[25 Out 2005] DSA-871 libgda2 - format string
[25 Out 2005] DSA-870 sudo - missing input sanitising
[21 Out 2005] DSA-869 eric - missing input sanitising
[20 Out 2005] DSA-868 mozilla-thunderbird - several vulnerabilities
[20 Out 2005] DSA-867 module-assistant - insecure temporary file
[20 Out 2005] DSA-866 mozilla - several vulnerabilities
[13 Out 2005] DSA-865 hylafax - insecure temporary files
[13 Out 2005] DSA-864 ruby1.8 - programming error
[12 Out 2005] DSA-863 xine-lib - format string vulnerability
[11 Out 2005] DSA-862 ruby1.6 - programming error
[11 Out 2005] DSA-861 uw-imap - buffer overflow
[11 Out 2005] DSA-860 ruby - programming error
[10 Out 2005] DSA-859 xli - buffer overflows
[10 Out 2005] DSA-858 xloadimage - buffer overflows
[10 Out 2005] DSA-857 graphviz - insecure temporary file
[10 Out 2005] DSA-856 py2play - design error
[10 Out 2005] DSA-855 weex - format string vulnerability
[09 Out 2005] DSA-854 tcpdump - infinite loop
[09 Out 2005] DSA-853 ethereal - several vulnerabilities
[09 Out 2005] DSA-852 up-imapproxy - format string vulnerabilities
[09 Out 2005] DSA-851 openvpn - programming errors
[09 Out 2005] DSA-850 tcpdump - infinite loop
[08 Out 2005] DSA-849 shorewall - programming error
[08 Out 2005] DSA-848 masqmail - several vulnerabilities
[08 Out 2005] DSA-847 dia - missing input sanitising
[07 Out 2005] DSA-846 cpio - several vulnerabilities
[06 Out 2005] DSA-845 mason - programming error
[05 Out 2005] DSA-844 mod-auth-shadow - programming error
[05 Out 2005] DSA-843 arc - insecure temporary file
[04 Out 2005] DSA-842 egroupware - missing input sanitising
[04 Out 2005] DSA-841 mailutils - format string vulnerability
[04 Out 2005] DSA-840 drupal - missing input sanitising
[04 Out 2005] DSA-839 apachetop - insecure temporary file
[02 Out 2005] DSA-838 mozilla-firefox - multiple vulnerabilities
[02 Out 2005] DSA-837 mozilla-firefox - buffer overflow
[01 Out 2005] DSA-836 cfengine2 - insecure temporary files
[01 Out 2005] DSA-835 cfengine - insecure temporary files
[01 Out 2005] DSA-834 prozilla - buffer overflow
[01 Out 2005] DSA-833 mysql-dfsg-4.1 - buffer overflow
[30 Set 2005] DSA-832 gopher - buffer overflows
[30 Set 2005] DSA-831 mysql-dfsg - buffer overflow
[30 Set 2005] DSA-830 ntlmaps - wrong permissions
[30 Set 2005] DSA-829 mysql - buffer overflow
[30 Set 2005] DSA-828 squid - authentication handling
[29 Set 2005] DSA-827 backupninja - insecure temporary file
[29 Set 2005] DSA-826 helix-player - multiple vulnerabilities
[29 Set 2005] DSA-825 loop-aes-utils - privilege escalation
[29 Set 2005] DSA-824 clamav - infinite loop, buffer overflow
[29 Set 2005] DSA-823 util-linux - privilege escalation
[29 Set 2005] DSA-822 gtkdiskfree - insecure temporary file creation
[28 Set 2005] DSA-821 python2.3 - integer overflow
[24 Set 2005] DSA-820 courier - missing input sanitising
[23 Set 2005] DSA-819 python2.1 - integer overflow
[22 Set 2005] DSA-818 kdeedu - insecure temporary files
[22 Set 2005] DSA-817 python2.2 - integer overflow
[19 Set 2005] DSA-816 xfree86 - integer overflow
[16 Set 2005] DSA-815 kdebase - programming error
[15 Set 2005] DSA-814 lm-sensors - insecure temporary file
[15 Set 2005] DSA-813 centericq - several vulnerabilities
[15 Set 2005] DSA-812 turqstat - buffer overflow
[14 Set 2005] DSA-811 common-lisp-controller - design error
[13 Set 2005] DSA-810 mozilla - several vulnerabilities
[13 Set 2005] DSA-809 squid - several vulnerabilities
[12 Set 2005] DSA-808 tdiary - design error
[12 Set 2005] DSA-807 libapache-mod-ssl - acl restriction bypass
[09 Set 2005] DSA-806 gcvs - insecure temporary files
[08 Set 2005] DSA-805 apache2 - several vulnerabilities
[08 Set 2005] DSA-804 kdelibs - insecure permissions
[08 Set 2005] DSA-803 apache - programming error
[07 Set 2005] DSA-802 cvs - insecure temporary files
[05 Set 2005] DSA-801 ntp - programming error
[02 Set 2005] DSA-800 pcre3 - integer overflow
[02 Set 2005] DSA-799 webcalendar - remote code execution
[02 Set 2005] DSA-798 phpgroupware - several vulnerabilities
[01 Set 2005] DSA-797 zsync - denial of service
[01 Set 2005] DSA-796 affix - remote command execution
[01 Set 2005] DSA-795 proftpd - potential code execution
[01 Set 2005] DSA-794 polygen - programming error
[01 Set 2005] DSA-793 courier - missing input sanitising
[31 Ago 2005] DSA-792 pstotext - missing input sanitising
[30 Ago 2005] DSA-791 maildrop - missing privilege release
[30 Ago 2005] DSA-790 phpldapadmin - programming error
[29 Ago 2005] DSA-789 php4 - several vulnerabilities
[29 Ago 2005] DSA-788 kismet - several vulnerabilities
[26 Ago 2005] DSA-787 backup-manager - insecure permissions and tempfile
[26 Ago 2005] DSA-786 simpleproxy - format string vulnerability
[25 Ago 2005] DSA-785 libpam-ldap - authentication bypass
[25 Ago 2005] DSA-784 courier - programming error
[24 Ago 2005] DSA-783 mysql-dfsg-4.1 - insecure temporary file
[23 Ago 2005] DSA-782 bluez-utils - missing input sanitising
[23 Ago 2005] DSA-781 mozilla-thunderbird - several vulnerabilities
[22 Ago 2005] DSA-780 kdegraphics - wrong input sanitising
[20 Ago 2005] DSA-779 mozilla-firefox - several vulnerabilities
[19 Ago 2005] DSA-778 mantis - missing input sanitising
[17 Ago 2005] DSA-777 mozilla - frame injection spoofing
[16 Ago 2005] DSA-776 clamav - integer overflows, infinite loop
[15 Ago 2005] DSA-775 mozilla-firefox - frame injection spoofing
[12 Ago 2005] DSA-774 fetchmail - buffer overflow
[11 Ago 2005] DSA-773 amd64 - several vulnerabilities
[03 Ago 2005] DSA-772 apt-cacher - missing input sanitising
[01 Ago 2005] DSA-771 pdns - several vulnerabilities
[29 Jul 2005] DSA-770 gopher - insecure tmpfile creating
[29 Jul 2005] DSA-769 gaim - memory alignment bug
[27 Jul 2005] DSA-768 phpbb2 - missing input validation
[27 Jul 2005] DSA-767 ekg - integer overflows
[26 Jul 2005] DSA-766 webcalendar - authorisation failure
[22 Jul 2005] DSA-765 heimdal - buffer overflow
[21 Jul 2005] DSA-764 cacti - several vulnerabilities
[20 Jul 2005] DSA-763 zlib - remote DoS
[19 Jul 2005] DSA-762 affix - several vulnerabilities
[19 Jul 2005] DSA-761 heartbeat - insecure temporary files
[18 Jul 2005] DSA-760 ekg - several vulnerabilities
[18 Jul 2005] DSA-759 phppgadmin - missing input sanitising
[18 Jul 2005] DSA-758 heimdal - buffer overflow
[17 Jul 2005] DSA-757 krb5 - buffer overflow, double-free memory
[13 Jul 2005] DSA-756 squirrelmail - several vulnerabilities
[13 Jul 2005] DSA-755 tiff - buffer overflow
[13 Jul 2005] DSA-754 centericq - insecure temporary file
[12 Jul 2005] DSA-753 gedit - format string
[11 Jul 2005] DSA-752 gzip - several vulnerabilities
[11 Jul 2005] DSA-751 squid - IP spoofing
[11 Jul 2005] DSA-750 dhcpcd - out-of-bound memory access
[10 Jul 2005] DSA-749 ettercap - format string error
[10 Jul 2005] DSA-748 ruby1.8 - bad default value
[10 Jul 2005] DSA-747 egroupware - input validation error
[13 Jul 2005] DSA-746 phpgroupware - input validation error
[10 Jul 2005] DSA-745 drupal - input validation errors
[08 Jul 2005] DSA-744 fuse - programming error
[08 Jul 2005] DSA-743 ht - buffer overflows, integer overflows
[07 Jul 2005] DSA-742 cvs - buffer overflow
[07 Jul 2005] DSA-741 bzip2 - infinite loop
[06 Jul 2005] DSA-740 zlib - remote denial of service
[06 Jul 2005] DSA-739 trac - missing input sanitising
[05 Jul 2005] DSA-738 razor - remote denial of service
[05 Jul 2005] DSA-737 clamav - remote denial of service
[01 Jul 2005] DSA-736 spamassassin - remote denial of service
[01 Jul 2005] DSA-735 sudo - pathname validation race
[05 Jul 2005] DSA-734 gaim - denial of service
[30 Jun 2005] DSA-733 crip - insecure temporary files
[03 Jun 2005] DSA-732 mailutils - several vulnerabilities
[02 Jun 2005] DSA-731 krb4 - buffer overflows
[27 Mai 2005] DSA-730 bzip2 - race condition
[26 Mai 2005] DSA-729 php4 - missing input sanitising
[26 Mai 2005] DSA-728 qpopper - missing privilege release
[20 Mai 2005] DSA-727 libconvert-uulib-perl - buffer overflow
[20 Mai 2005] DSA-726 oops - format string vulnerability
[19 Mai 2005] DSA-725 ppxp - missing privilege release
[18 Mai 2005] DSA-724 phpsysinfo - design flaw
[09 Mai 2005] DSA-723 xfree86 - buffer overflow
[09 Mai 2005] DSA-722 smail - buffer overflow
[06 Mai 2005] DSA-721 squid - design flaw
[03 Mai 2005] DSA-720 smartlist - wrong input processing
[28 Abr 2005] DSA-719 prozilla - format string problems
[28 Abr 2005] DSA-718 ethereal - buffer overflow
[27 Abr 2005] DSA-717 lsh-utils - buffer overflow, typo
[27 Abr 2005] DSA-716 gaim - denial of service
[27 Abr 2005] DSA-715 cvs - several vulnerabilities
[26 Abr 2005] DSA-714 kdelibs - several vulnerabilities
[21 Abr 2005] DSA-713 junkbuster - several vulnerabilities
[19 Abr 2005] DSA-712 geneweb - insecure file operations
[19 Abr 2005] DSA-711 info2www - missing input sanitising
[18 Abr 2005] DSA-710 gtkhtml - referência a ponteiro nulo
[15 Abr 2005] DSA-709 libexif - estouro de buffer
[15 Abr 2005] DSA-708 php3 - falta de sanitização de entrada
[13 Abr 2005] DSA-707 mysql - várias vulnerabilidades
[13 Abr 2005] DSA-706 axel - estouro de buffer
[04 Abr 2005] DSA-705 wu-ftpd - Falta sanitização da entrada
[04 Abr 2005] DSA-704 remstats - Arquivo temporário, falta de sanitização de entrada
[01 Abr 2005] DSA-703 krb5 - estouros de buffer
[01 Abr 2005] DSA-702 imagemagick - several vulnerabilities
[21 Abr 2005] DSA-701 samba - estouros de inteiro
[30 Mar 2005] DSA-700 mailreader - entrada não sanitizada
[29 Mar 2005] DSA-699 netkit-telnet-ssl - estouro de buffer
[29 Mar 2005] DSA-698 mc - estouro de buffer
[29 Mar 2005] DSA-697 netkit-telnet - estouros de buffer
[22 Mar 2005] DSA-696 perl - falha de design
[21 Mar 2005] DSA-695 xli - estouro de buffer, sanitização de entrada, estouro de inteiro
[21 Mar 2005] DSA-694 xloadimage - falta sanitização da entrada, estouro de inteiro
[14 Mar 2005] DSA-693 luxman - estouro de buffer
[08 Mar 2005] DSA-692 kdenetwork - falha de design
[07 Mar 2005] DSA-691 abuse - várias vulnerabilidades
[25 Fev 2005] DSA-690 bsmtpd - sanitização de entrada ausente
[23 Fev 2005] DSA-689 libapache-mod-python - sanitização de entrada ausente
[23 Fev 2005] DSA-688 squid - sanitização de entrada ausente
[18 Fev 2005] DSA-687 bidwatcher - formato de string
[17 Fev 2005] DSA-686 gftp - sanitização de entrada ausente
[17 Fev 2005] DSA-685 emacs21 - formato de string
[16 Fev 2005] DSA-684 typespeed - formato de string
[15 Fev 2005] DSA-683 postgresql - estouros de buffer
[15 Fev 2005] DSA-682 awstats - sanitização de entrada ausente
[14 Fev 2005] DSA-681 synaesthesia - escalação de privilégio
[14 Fev 2005] DSA-680 htdig - entrada não-sanitizada
[14 Fev 2005] DSA-679 toolchain-source - arquivos temporários inseguros
[11 Fev 2005] DSA-678 netkit-rwho - validação de entrada ausente
[11 Fev 2005] DSA-677 sympa - estouro de buffer
[11 Fev 2005] DSA-676 xpcd - estouro de buffer
[10 Fev 2005] DSA-675 hztty - escalação de privilégios
[21 Fev 2005] DSA-674 mailman - script cross-site, travessia de diretório
[10 Fev 2005] DSA-673 evolution - estouro de inteiro
[09 Fev 2005] DSA-672 xview - estouros de buffer
[08 Fev 2005] DSA-671 xemacs21 - formato de string
[08 Fev 2005] DSA-670 emacs20 - formato de string
[07 Fev 2005] DSA-669 php3 - várias vulnerabilidades
[04 Fev 2005] DSA-668 postgresql - privilege escalation
[04 Fev 2005] DSA-667 squid - várias vulnerabilidades
[04 Fev 2005] DSA-666 python2.2 - falha de design
[04 Fev 2005] DSA-665 ncpfs - liberação de privilégio ausente
[02 Fev 2005] DSA-664 cpio - permissões de arquivo quebradas
[01 Fev 2005] DSA-663 prozilla - estouros de buffer
[14 Mar 2005] DSA-662 squirrelmail - várias vulnerabilidades
[20 Abr 2005] DSA-661 f2c - arquivos temporários inseguros
[26 Jan 2005] DSA-660 kdebase - verificação de valor de retorno ausente
[26 Jan 2005] DSA-659 libpam-radius-auth - vazamento de informação, underflow de inteiro
[25 Jan 2005] DSA-658 libdbi-perl - arquivo temporário inseguro
[25 Jan 2005] DSA-657 xine-lib - estouro de buffer
[25 Jan 2005] DSA-656 vdr - acesso inseguro a arquivo
[25 Jan 2005] DSA-655 zhcon - liberação de privilégios ausente
[21 Jan 2005] DSA-654 enscript - várias vulnerabilidades
[21 Jan 2005] DSA-653 ethereal - estouro de buffer
[21 Jan 2005] DSA-652 unarj - várias vulnerabilidades
[20 Jan 2005] DSA-651 squid - estouro de buffer, estouro de inteiro
[20 Jan 2005] DSA-650 sword - sanitização de entrada ausente
[20 Jan 2005] DSA-649 xtrlock - estouro de buffer
[19 Jan 2005] DSA-648 xpdf - estouro de buffer
[19 Jan 2005] DSA-647 mysql - arquivos temporários inseguros
[19 Jan 2005] DSA-646 imagemagick - estouro de buffer
[19 Jan 2005] DSA-645 cupsys - estouro de buffer
[18 Jan 2005] DSA-644 chbg - estouro de buffer
[18 Jan 2005] DSA-643 queue - estouros de buffer
[17 Jan 2005] DSA-642 gallery - várias vulnerabilidades
[17 Jan 2005] DSA-641 playmidi - estouro de buffer
[17 Jan 2005] DSA-640 gatos - estouro de buffer
[14 Jan 2005] DSA-639 mc - várias vulnerabilidades
[13 Jan 2005] DSA-638 gopher - várias vulnerabilidades
[13 Jan 2005] DSA-637 exim-tls - estouro de buffer
[12 Jan 2005] DSA-636 glibc - arquivos temporários inseguros
[12 Jan 2005] DSA-635 exim - estouro de buffer
[11 Jan 2005] DSA-634 hylafax - validação de nome de host e usuário fraca
[11 Jan 2005] DSA-633 bmv - arquivo temporário inseguro
[10 Jan 2005] DSA-632 linpopup - estouro de buffer
[10 Jan 2005] DSA-631 kdelibs - entrada não-sanitizada
[10 Jan 2005] DSA-630 lintian - diretório temporário inseguro
[07 Jan 2005] DSA-629 krb5 - estouro de buffer
[06 Jan 2005] DSA-628 imlib2 - estouros de inteiro
[06 Jan 2005] DSA-627 namazu2 - entrada não-sanitizada
[06 Jan 2005] DSA-626 tiff - entrada não-sanitizada
[05 Jan 2005] DSA-625 pcal - estouros de buffer
[05 Jan 2005] DSA-624 zip - estouro de buffer
[04 Jan 2005] DSA-623 nasm - estouro de buffer
[03 Jan 2005] DSA-622 htmlheadline - arquivos temporários inseguros

Você pode receber os últimos alertas de segurança Debian inscrevendo-se na nossa lista de discussão debian-security-announce. Você também pode navegar pelos arquivos da lista.

---

Voltar para a página principal do Projeto Debian.

---

---