Tanzania Computer Emergency Response Team

TZCERT-SU-24-0068 (Mageia Security Update)

22nd January 2024

Mageia has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Mageia Security Advisories dated 17th January and apply necessary updates.

TZCERT-SU-24-0067 (Drupal Security Update)

22nd January 2024

Drupal has released security updates to address vulnerabilities in Drupal Core. Exploitation of these vulnerabilities may allow an attacker to cause denial of service condition to an affected system. Users and Administrators are encouraged to review Drupal Security Advisory and apply necessary updates.

TZCERT-SU-24-0066 (Oracle Linux Security Update)

22nd January 2024

Oracle has released security updates to address vulnerabilities in in Oracle Linux OS. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Oracle Security Advisories dated 18th January 2024 and apply necessary updates.

TZCERT-SU-24-0065 (SUSE Security Update)

22nd January 2024

SUSE has released security updates to address vulnerabilities in SUSE OS. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review SUSE Security Advisories dated 18th January 2024 and apply necessary updates.

TZCERT-SU-24-0064 (Ubuntu Security Update)

22nd January 2024

Ubuntu has released security updates to address vulnerabilities in Xerces-C++ and FileZilla packages. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system. Users and Administrators are encouraged to review Ubuntu Security Notices dated 18th January 2024 and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0068 (Mageia Security Update)

TZCERT-SU-24-0067 (Drupal Security Update)

TZCERT-SU-24-0066 (Oracle Linux Security Update)

TZCERT-SU-24-0065 (SUSE Security Update)

TZCERT-SU-24-0064 (Ubuntu Security Update)

Subscribe to Receive Regular Updates

HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers Arbitrary Code Execution (CVE-2021-38578)

OS Command Injection Vulnerability in PAN-OS GlobalProtect (CVE-2024-3400)

Critical vulnerabilities affecting IBM Sterling B2B Integrator, IBM QRadar SIEM and IBM Disconnected Log Collector (CVE-2022-42920, CVE-2023-51385 and CVE-2023-39410)

AIKit 4.14.1 Authenticated SQL Injection (CVE-2024-31370)

Critical remote code execution vulnerability in XZ Library (CVE-2024-3094)