Tanzania Computer Emergency Response Team

Advisory No: TZCERT/SA/2024/04/02 Date of First Release: 2nd April 2024 Source: Arch Linux, Red Hat Software Affected: XZ Library versions 5.6.0 and 5.6.1 Overview: Arch Linux and Red Hat have released security patches to address a critical vulnerability affecting the xz library. The vulnerability could allow an attacker to execute …

SUSE has released security updates to address vulnerabilities in Linux kernel and PackageKit. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20241040-1 and suse-su-20241046-1 and apply necessary updates.

Dell has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisories dsa-2024-023, dsa-2024-135, dsa-2024-151 and dsa-2024-134 and apply necessary updates.

Ubuntu has released security updates to address vulnerabilities in curl and Linux kernel. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6718-1 and USN-6686-5 and apply necessary updates.

Rapid7 has released security update to address a vulnerability in InsightVM. Exploitation of this vulnerability may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review Rapid7 Security Advisory and apply necessary updates.