Tanzania Computer Emergency Response Team

TZCERT-SU-24-0002 (DebianOS Security Update)

2nd January 2024

Debian has released security updates to address vulnerabilities in libspreadsheet-parseexcel-perl and linux kernel. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Debian Security Advisories msg00289 and msg00000 and apply necessary updates.

TZCERT-SU-24-0001 (Ubuntu Security Update)

2nd January 2024

Ubuntu has released security update to address vulnerabilities in Firefox. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Ubuntu Security Advisory and apply necessary updates.

SUSE Security Update

2nd January 2024

SUSE has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review SUSE Security Advisories suse-su-20234982-1, suse-su-20234983-1, suse-su-20234984-1, suse-su-20234987-1, suse-su-20234981-1 and suse-su-20234978-1 and apply necessary updates.

Dell Security Update

2nd January 2024

Dell has released security updates to address vulnerabilities in multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Dell Security Advisories dsa-2023-409, dsa-2023-315, dsa-2023-468 and dsa-2023-412 and apply necessary updates.

Chrome Security Update

2nd January 2024

Google has released security updates to address vulnerabilities in ChromeOS. Exploitation of these vulnerabilities may allow an attacker to take control of affected system. Users and administrators are encouraged to review Chrome Security Advisory and apply necessary updates.

Tanzania Computer Emergency Response Team

CAPACITY BUILDING: THREAT DETECTION AND INCIDENT HANDLING AND RESPONSE TRAINING

CAPACITY BUILDING: THREAT DETECTION TRAINING

Cybersecurity is a key for Development – Tanzania Ranks 2nd in Africa

Download: Advice to Parent/Guardians in Protecting Children Online

Current Activities

TZCERT-SU-24-0002 (DebianOS Security Update)

TZCERT-SU-24-0001 (Ubuntu Security Update)

SUSE Security Update

Dell Security Update

Chrome Security Update

Subscribe to Receive Regular Updates

HPE Superdome Flex, Superdome Flex 280 and Compute Scale-up Server 3200 Servers Arbitrary Code Execution (CVE-2021-38578)

OS Command Injection Vulnerability in PAN-OS GlobalProtect (CVE-2024-3400)

Critical vulnerabilities affecting IBM Sterling B2B Integrator, IBM QRadar SIEM and IBM Disconnected Log Collector (CVE-2022-42920, CVE-2023-51385 and CVE-2023-39410)

AIKit 4.14.1 Authenticated SQL Injection (CVE-2024-31370)

Critical remote code execution vulnerability in XZ Library (CVE-2024-3094)