Tanzania Computer Emergency Response Team

TZCERT-SU-24-0005 (MediaTek Security Update)

2nd January 2024

MediaTek has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review MediaTek Security Advisory and apply necessary updates.

TZCERT-SU-24-0004 (IBM Security Update)

2nd January 2024

IBM has released security updates to address vulnerabilities in IBM Storage Scale and IBM Maximo Application Suite. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review IBM Security Advisories node-7104389, node-7104391 and node-7104390 and apply necessary updates.

TZCERT-SU-24-0003 (Qualcomm Security Update)

2nd January 2024

Qualcomm has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to cause a denial of service condition. Users and administrators are encouraged to review Qualcomm Security Advisory and apply necessary updates.

TZCERT-SU-24-0002 (DebianOS Security Update)

2nd January 2024

Debian has released security updates to address vulnerabilities in libspreadsheet-parseexcel-perl and linux kernel. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Debian Security Advisories msg00289 and msg00000 and apply necessary updates.

TZCERT-SU-24-0001 (Ubuntu Security Update)

2nd January 2024

Ubuntu has released security update to address vulnerabilities in Firefox. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisory and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0005 (MediaTek Security Update)

TZCERT-SU-24-0004 (IBM Security Update)

TZCERT-SU-24-0003 (Qualcomm Security Update)

TZCERT-SU-24-0002 (DebianOS Security Update)

TZCERT-SU-24-0001 (Ubuntu Security Update)

Subscribe to Receive Regular Updates

HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers Arbitrary Code Execution (CVE-2021-38578)

OS Command Injection Vulnerability in PAN-OS GlobalProtect (CVE-2024-3400)

Critical vulnerabilities affecting IBM Sterling B2B Integrator, IBM QRadar SIEM and IBM Disconnected Log Collector (CVE-2022-42920, CVE-2023-51385 and CVE-2023-39410)

AIKit 4.14.1 Authenticated SQL Injection (CVE-2024-31370)

Critical remote code execution vulnerability in XZ Library (CVE-2024-3094)