Tanzania Computer Emergency Response Team

TZCERT-SU-24-0017 (IBM Security Update)

5th January 2024

IBM has released security updates to address vulnerabilities in IBM Aspera, Rational Build Forge, CICS Transaction Gateway, IBM Security QRadar SIEM and IBM i. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review IBM Security Advisories node-7101252, node-7105245, …

TZCERT-SU-24-0016 (DebianOS Security Update)

5th January 2024

Debian has released security updates to address vulnerabilities in Linux kernel. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Debian Security Advisory and apply necessary updates.

TZCERT-SU-24-0015 (HP Security Update)

5th January 2024

Hewlett-Packard has released security updates to address vulnerabilities in HPE UOCAM and Intel Virtual RAID. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege. Users and administrators are encouraged to review HP Security Advisories hpesbgn04570 and hpsbhf03862 and apply necessary updates.

TZCERT-SU-24-0014 (SUSE Security Update)

5th January 2024

SUSE has released security updates to address vulnerabilities in libcryptopp, webkit2gtk3, postfix and w3m. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20240030-1, suse-su-20240004-1, suse-su-20240012-1 and suse-su-20240014-1 and apply necessary updates.

TZCERT-SU-24-0013 (Chrome Security Update)

5th January 2024

Google has released security updates to address vulnerabilities in Chrome for android and Chrome for Desktop. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Chrome Security Advisories chrome-for-android and chrome-for-desktop and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0017 (IBM Security Update)

TZCERT-SU-24-0016 (DebianOS Security Update)

TZCERT-SU-24-0015 (HP Security Update)

TZCERT-SU-24-0014 (SUSE Security Update)

TZCERT-SU-24-0013 (Chrome Security Update)

Subscribe to Receive Regular Updates

HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers Arbitrary Code Execution (CVE-2021-38578)

OS Command Injection Vulnerability in PAN-OS GlobalProtect (CVE-2024-3400)

Critical vulnerabilities affecting IBM Sterling B2B Integrator, IBM QRadar SIEM and IBM Disconnected Log Collector (CVE-2022-42920, CVE-2023-51385 and CVE-2023-39410)

AIKit 4.14.1 Authenticated SQL Injection (CVE-2024-31370)

Critical remote code execution vulnerability in XZ Library (CVE-2024-3094)