Tanzania Computer Emergency Response Team

TZCERT-SU-24-0204 (Ubuntu Security Update)

22nd February 2024

Ubuntu has released security updates to address vulnerabilities in firefox, linux kernel and libspf2. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6649-1, USN-6648-1 and USN-6584-2 and apply necessary updates.

TZCERT-SU-24-0203 (WordPress Security Update)

22nd February 2024

Wordfence has released security updates to address vulnerabilities in Academy LMS and Elementor Addon. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Wordfence Security Advisories academy-lms and addon-elements and apply necessary updates.

TZCERT-SU-24-0202 (SUSE Security Update)

22nd February 2024

SUSE has released security updates to address vulnerabilities in qemu, docker, python, bind, dpdk and mozilla-nss. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20240589-1, suse-su-20240586-1, suse-su-20240585-1, suse-su-20240574-1, suse-su-20240576-1 and suse-su-20240578-1 and apply necessary …

TZCERT-SU-24-0201 (Dell Security Update)

22nd February 2024

Dell has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisory and apply necessary updates.

TZCERT-SU-24-0200 (Oracle Linux Security Update)

22nd February 2024

Oracle has released security updates to address vulnerabilities in .NET, gimp and MySQL. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Linux Security Advisories ELSA-2024-0827, ELSA-2024-0861 and ELSA-2024-0894 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0204 (Ubuntu Security Update)

TZCERT-SU-24-0203 (WordPress Security Update)

TZCERT-SU-24-0202 (SUSE Security Update)

TZCERT-SU-24-0201 (Dell Security Update)

TZCERT-SU-24-0200 (Oracle Linux Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)