Advisory No: TZCERT/SA/2023/01/08 Date of First Release: 8th January 2024 Source: SMTP servers Software Affected: POSTFIX in SMTP Overview: The vulnerability exists because a flaw was found in some SMTP server configurations in Postfix. This issue may allow a remote attacker to break out of the email message data to …
Read More »Current Activities
TZCERT-SU-24-0021 (ZTE Security Update)
ZTE has released security updates to address vulnerabilities in ZTE Red Magic 8 Pro. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review ZTE Security Advisories 1034444 and 1034404 and apply necessary updates.
Read More »TZCERT-SU-24-0020 (Red Hat Security Update)
Red Hat has released security updates to address vulnerabilities in squid, golang, opentelemetry, glibc and thunderbird. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Red Hat Security Advisories RHSA-2024:0046, RHSA-2023:7831, RHSA-2024:0033 and RHSA-2024:0030 and apply necessary updates.
Read More »TZCERT-SU-24-0019 (Dell Security Update)
Dell has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisories dsa-2021-285, dsa-2023-459 and 000194414-dell and apply necessary updates.
Read More »TZCERT-SU-24-0018 (Ubuntu Security Update)
Ubuntu has released security updates to address vulnerabilities in SQLite, OpenSSH, node.js and thunderbird. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisories USN-6566-1, USN-6565-1, USN-6564-1 and USN-6563-1 and apply necessary updates.
Read More »