Tanzania Computer Emergency Response Team

Oracle Security Update

21st February 2023

Oracle has released security updates to address vulnerabilities affecting Oracle Linux OS. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Oracle Security Advisories dated 17th February 2023 and apply necessary updates.

SUSE Security Update

21st February 2023

SUSE has released security updates to address vulnerabilities affecting SUSE OS. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review SUSE Security Advisories dated 17th February 2023 and apply necessary updates.

Ubuntu Security Update

21st February 2023

Ubuntu has released security updates to address vulnerabilities in Firefox. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Ubuntu security Notice USN-5880-1 and apply necessary updates.

Red Hat Security Update

21st February 2023

Red Hat has released security updates to address vulnerabilities in Red Hat multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Red Hat Security Advisories dated 17th February 2023 and apply necessary updates.

ClamAV Open Source antivirus software RCE vulnerability (CVE-2023-20032)

20th February 2023

Advisory No: TZCERT/SA/2023/02/17 Date of First Release: 17th February 2023 Source: CISCO Software Affected: ClamAV: 0.103.8,0.105.2 and 1.0.1 Overview: Cisco has rolled out security updates to address a critical flaw reported in the ClamAV open source antivirus engine that could lead to remote code execution on susceptible devices. This vulnerability could allow attackers to …

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

Oracle Security Update

SUSE Security Update

Ubuntu Security Update

Red Hat Security Update

ClamAV Open Source antivirus software RCE vulnerability (CVE-2023-20032)

Subscribe to Receive Regular Updates

HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers Arbitrary Code Execution (CVE-2021-38578)

OS Command Injection Vulnerability in PAN-OS GlobalProtect (CVE-2024-3400)

Critical vulnerabilities affecting IBM Sterling B2B Integrator, IBM QRadar SIEM and IBM Disconnected Log Collector (CVE-2022-42920, CVE-2023-51385 and CVE-2023-39410)

AIKit 4.14.1 Authenticated SQL Injection (CVE-2024-31370)

Critical remote code execution vulnerability in XZ Library (CVE-2024-3094)