Tanzania Computer Emergency Response Team

TZCERT-SU-24-0187 (Red Hat Security Update)

21st February 2024

Red Hat has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Red Hat Security Advisories dated 20th February 2024 and apply necessary updates.

TZCERT-SU-24-0186 (IBM Security Update)

21st February 2024

IBM has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review IBM Security Bulletins dated 19th February 2023 and apply necessary updates.

TZCERT-SU-24-0185 (Mageia Security Update)

21st February 2024

Mageia has released security updates to address vulnerabilities in Wireshark. Exploitation of these vulnerabilities may allow an attacker to cause denial of service condition to an affected system. Users and Administrators are encouraged to review Mageia Security Advisory and apply necessary updates.

TZCERT-SU-24-0184 (RabitMQ Security Update)

21st February 2024

RabitMQ has released security updates to address vulnerabilities in RabbitMQ prior to version 3.12.13. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review RabbitMQ Releases and apply necessary updates.

TZCERT-SU-24-0183 (Lenovo Security Update)

16th February 2024

Lenovo has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Lenovo Security Advisories dated 13th February 2024 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0187 (Red Hat Security Update)

TZCERT-SU-24-0186 (IBM Security Update)

TZCERT-SU-24-0185 (Mageia Security Update)

TZCERT-SU-24-0184 (RabitMQ Security Update)

TZCERT-SU-24-0183 (Lenovo Security Update)

Subscribe to Receive Regular Updates

HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers Arbitrary Code Execution (CVE-2021-38578)

OS Command Injection Vulnerability in PAN-OS GlobalProtect (CVE-2024-3400)

Critical vulnerabilities affecting IBM Sterling B2B Integrator, IBM QRadar SIEM and IBM Disconnected Log Collector (CVE-2022-42920, CVE-2023-51385 and CVE-2023-39410)

AIKit 4.14.1 Authenticated SQL Injection (CVE-2024-31370)

Critical remote code execution vulnerability in XZ Library (CVE-2024-3094)