Tanzania Computer Emergency Response Team

TZCERT-SU-24-0100 (Debian Security Update)

1st February 2024

Debian has released security updates to address vulnerabilities in glibc, redis and slurm. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Debian Security Advisories msg00018, msg00017 and msg00016 and apply necessary updates.

TZCERT-SU-24-0099 (Grafana Security Update)

1st February 2024

GitHub has released security updates to address vulnerabilities in Grafana. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review GitHub Security Advisories GHSA-8pjx-jj86-j47p and GHSA-cmf4-h3xc-jw8w and apply necessary updates.

TZCERT-SU-24-0098 (Ubuntu Security Update)

26th January 2024

Ubuntu has released security updates to address vulnerabilities in Linux kernel, MariaDB, jinja2, paramiko and puma. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6609-1, USN-6600-1, USN-6599-1, USN-6598-1 and USN-6597-1 and apply necessary updates.

TZCERT-SU-24-0097 (Dell Security Update)

26th January 2024

Dell has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisories dsa-2024-058, dsa-2024-059 and dsa-2023-409 and apply necessary updates.

TZCERT-SU-24-0096 (SUSE Security Update)

26th January 2024

SUSE has released security updates to address vulnerabilities in xorg-x11-server, Apache-parent and Firefox. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20240236-1, suse-su-20240224-1 and suse-su-20240228-1 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0100 (Debian Security Update)

TZCERT-SU-24-0099 (Grafana Security Update)

TZCERT-SU-24-0098 (Ubuntu Security Update)

TZCERT-SU-24-0097 (Dell Security Update)

TZCERT-SU-24-0096 (SUSE Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)