Tanzania Computer Emergency Response Team

TZCERT-SU-24-0679 (SUSE Security Update)

2 weeks ago

SUSE has released security updates to address vulnerabilities in Linux kernel, wget, ghostscript, qpdf and vte. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20242221-1, suse-su-20242201-1, suse-su-20242199-1, suse-su-20242173-1 and suse-su-20242180-1 and apply necessary updates.

TZCERT-SU-24-0678 (Apple Security Update)

2 weeks ago

Apple has released security updates to address a vulnerability in AirPods, AirPods Pro, AirPods Max, Powerbeats Pro, and Beats Fit Pro. Exploitation of this vulnerability may allow an attacker to spoof the source device. Users and administrators are encouraged to review Apple Security Advisory and apply necessary updates.

TZCERT-SU-24-0677 (Ubuntu Security Update)

2 weeks ago

Ubuntu has released security updates to address vulnerabilities in OpenVPN, salt, roundcube, ansible, cups and hibernate. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6850-1, USN-6849-1, USN-6848-1, USN-6846-1, USN-6844-1 and USN-6845-1 and apply necessary …

TZCERT-SU-24-0676 (WordPress Security Update)

2 weeks ago

WordPress has released security updates to address vulnerabilities in auto-featured-image, gdpr-cookie-consent, quiz-maker, wp-cafe, blaze-widget and Contributor. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review WordPress Security Advisories auto-featured-image, gdpr-cookie-consent, quiz-maker, wp-cafe, blaze-widget, 36232787-754a-4234, 7c448f6d-4531-4757 and 2c63f136-4c1f-4093 and …

TZCERT-SU-24-0675 (Oracle Linux Security Update)

2 weeks ago

Oracle has released security updates to address vulnerabilities in python, git and libreswan. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Security Advisories ELSA-2024-4077, ELSA-2024-4084 and ELSA-2024-4050 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0679 (SUSE Security Update)

TZCERT-SU-24-0678 (Apple Security Update)

TZCERT-SU-24-0677 (Ubuntu Security Update)

TZCERT-SU-24-0676 (WordPress Security Update)

TZCERT-SU-24-0675 (Oracle Linux Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)