Tanzania Computer Emergency Response Team

TZCERT-SU-24-0520 (Ubuntu Security Update)

17th May 2024

Ubuntu has released security updates to address vulnerabilities in Linux kernel, strongSwan and SQL parse. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6766-2, USN-6772-1 and USN-6771-1 and apply necessary updates.

TZCERT-SU-24-0519 (HP Security Update)

17th May 2024

Hewlett-Packard has released security updates to address vulnerabilities in HPE ProLiant servers and HPE Aruba. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review HP Security Advisories hpesbhf04593 and ARUBA-PSA-2024-006 and apply necessary updates.

TZCERT-SU-24-0518 (SUSE Security Update)

17th May 2024

SUSE has released security updates to address vulnerabilities in Python, Linux kernel, postgresql15, OpenSSL, tpm2-0-tss and Perl. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20241667-1, suse-su-20241663-1, suse-su-20241653-1, suse-su-20241634-1, suse-su-20241635-1 and suse-su-20241630-1 and apply …

TZCERT-SU-24-0517 (Mozilla Security Update)

17th May 2024

Mozilla has released security updates to address vulnerabilities in Thunderbird, Firefox ESR and Firefox. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Mozilla Security Advisories mfsa2024-23, mfsa2024-22 and mfsa2024-21 and apply necessary updates.

TZCERT-SU-24-0516 (Mageia Security Update)

17th May 2024

Mageia has released security updates to address vulnerabilities in tcpdump, sssd and mutt. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Mageia Security Advisories MGASA-2024-0177, MGASA-2024-0176 and MGASA-2024-0175 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0520 (Ubuntu Security Update)

TZCERT-SU-24-0519 (HP Security Update)

TZCERT-SU-24-0518 (SUSE Security Update)

TZCERT-SU-24-0517 (Mozilla Security Update)

TZCERT-SU-24-0516 (Mageia Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)