Tanzania Computer Emergency Response Team

GitHub has released security update to address vulnerabilities in Grafana, Apache Airflow and spring Data REST. Exploitation of these vulnerabilities may allow an attacker to gain access to sensitive information. Users and administrators are encouraged to review GitHub Security Advisories GHSA-p978-56hq-r492, GHSA-5rp4-749p-vx26, GHSA-4fg5-j4mm-wfpg and GHSA-fv7x-v67w-cvqv and apply necessary updates.

Insyde has released security updates to address vulnerabilities in SMM driver. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Insyde Security Advisories SA-2022031, SA-2022032 and SA-2022035 and apply necessary updates.

SUSE has released security updates to address vulnerabilities in virt and vsftp. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20223321-1 and suse-su-20223320-1 and apply necessary updates.

Oracle has released security updates to address vulnerabilities in Oracle Solaris, Oracle Linux and Oracle VM Server. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Oracle Security Advisories bulletinjul2022, linuxbulletinjul2022 and ovmbulletinjul2022 and apply necessary updates.

Ubuntu has released security updates to address vulnerabilities in xen, vim, ghostscript and libTIFF. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-5617-1, USN-5613-2, USN-5618-1 and USN-5619-1 and apply necessary updates.