Tanzania Computer Emergency Response Team

TZCERT-SU-24-0317 (Ubuntu Security Update)

21st March 2024

Ubuntu has released security updates to address vulnerabilities in Linux kernel and Firefox. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6702-2 and USN-6703-1 and apply necessary updates.

TZCERT-SU-24-0316 (Atlassian Security Update)

21st March 2024

Atlassian has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Atlassian Security Advisory and apply necessary updates.

TZCERT-SU-24-0315 (Oracle Security Update)

21st March 2024

Oracle has released security updates to address vulnerabilities in Oracle Solaris and Oracle Linux. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Security Advisories bulletinjan2024, ELSA-2024-1436, ELSA-2024-1249, ELSA-2024-1427, ELSA-2024-19480, ELSA-2024-1376, ELSA-2024-12233 and ELSA-2024-12226 and apply necessary …

TZCERT-SU-24-0314 (F5 Security Update)

21st March 2024

F5 has released security updates to address vulnerabilities in F5OS-A and Traffix SDC. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review F5 Security Advisories K000138966 and K000138957 and apply necessary updates.

TZCERT-SU-24-0313 (Mageia Security Update)

21st March 2024

Mageia has released security updates to address vulnerabilities in python, libtiff, qpdf, cherrytree and SQLite3. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Mageia Security Advisories MGASA-2024-0078, MGASA-2024-0077, MGASA-2024-0076, MGASA-2024-0074 and MGASA-2024-0073 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0317 (Ubuntu Security Update)

TZCERT-SU-24-0316 (Atlassian Security Update)

TZCERT-SU-24-0315 (Oracle Security Update)

TZCERT-SU-24-0314 (F5 Security Update)

TZCERT-SU-24-0313 (Mageia Security Update)

Subscribe to Receive Regular Updates

Multiple critical vulnerabilities affecting WordPress (CVE-2024-3604, CVE-2024-6314, CVE-2024-6313, CVE-2024-6365)

Critical Vulnerabilities in multiple IBM vulnerabilities (CVE-2024-1597, CVE-2022-46337)

Arbitrary code execution vulnerability on IBM Instana Observability (CVE-2023-39410)

High severity vulnerabilities affecting WordPress (CVE-2024-5943, CVE-2024-2385, CVE-2024-6319, CVE-2024-6318)

High severity vulnerabilities in HPE ProLiant and HPE Edgeline Servers Using BIOS (PixieFail) (CVE-2023-45229, CVE-2023-45230, CVE-2023-45234, CVE-2023-45235, CVE-2021-38575)