Tanzania Computer Emergency Response Team

TZCERT-SU-24-0345 (Mageia Security Update)

29th March 2024

Mageia has released security updates to address vulnerabilities in tcpreplay, pyhton and grub. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review Mageia Security Advisories MGASA-2024-0098, MGASA-2024-0096 and MGASA-2024-0095 and apply necessary updates.

TZCERT-SU-24-0344 (HP Security Update)

29th March 2024

Hewlett-Packard has released security updates to address vulnerabilities in HPE ArubaOS-Switch and HPE IceWall Products. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review HP Security Advisories hpesbnw04627 and hpesbmu04626 and apply necessary updates.

TZCERT-SU-24-0343 (Red Hat Security Update)

29th March 2024

Red Hat has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Red Hat Security Advisories RHSA-2024:1557, RHSA-2024:1555, RHSA-2024:1549 and RHSA-2024:1464 and apply necessary updates.

TZCERT-SU-24-0342 (Curl Security Update)

29th March 2024

Curl has released security updates to address vulnerabilities in curl 7.x.x to and 8.x.x. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review Curl Security Advisories CVE-2024-2466, CVE-2024-2398, CVE-2024-2379 and CVE-2024-2004 and apply necessary updates.

TZCERT-SU-24-0341 (Cisco Security Update)

29th March 2024

Cisco has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Cisco Security Advisories dated 27th March 2024 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0345 (Mageia Security Update)

TZCERT-SU-24-0344 (HP Security Update)

TZCERT-SU-24-0343 (Red Hat Security Update)

TZCERT-SU-24-0342 (Curl Security Update)

TZCERT-SU-24-0341 (Cisco Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)