Tanzania Computer Emergency Response Team

APM Java Security Update

10th December 2021

Elasticsearch has released security update to address a vulnerability in APM Java. Exploitation of this vulnerability may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Elasticsearch Security Advisory and apply necessary updates.

Chrome Security Update

7th December 2021

Google has released security updates to address vulnerabilities in Chrome for Desktop. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Chrome Release Note and apply necessary updates.

Ubuntu Security Update

7th December 2021

Ubuntu has released security updates to address vulnerabilities in MariaDB, Samba, libmodbus, uriparser and long range ZIP. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-5172-1, USN-5170-1, USN-5174-1, USN-5173-1 and USN-5171-1 and apply necessary updates.

Cisco Security update

7th December 2021

Cisco has released security update to address vulnerabilities in Cisco Small Business 220 Series Smart Switches. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Cisco Security Advisory and apply necessary updates.

Red Hat Security Update

7th December 2021

Red Hat has released security updates to address vulnerabilities in thunderbird, nss and kpatch. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Red Hat Security Advisories RHSA-2021:4969, RHSA-2021:4953 and RHSA-2021:4971 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

APM Java Security Update

Chrome Security Update

Ubuntu Security Update

Cisco Security update

Red Hat Security Update

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)