Alerts – Page 26 – Tanzania Computer Emergency Response Team

TZCERT-SU-24-0322 (Apple Security Update)

27th March 2024

Apple has released security updates to address vulnerabilities in in Safari, macOS Sonoma and macOS Ventura. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Apple Security Advisories dated 25th March 2024 and apply necessary updates.

TZCERT-SU-24-0321 (Red Hat Security Update)

27th March 2024

Red Hat has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review Red Hat Security Advisories dated 27th March 2024 and apply necessary updates.

TZCERT-SU-24-0320 (HP Security Update)

27th March 2024

Hp has released security updates to address a vulnerability in HP Printer Firmware. Exploitation of this vulnerability may allow an attacker to take control of an affected system.

Users and Administrators are encouraged to review HP Security Bulletin and apply necessary updates.

TZCERT-SU-24-0319 (Slackware Security Update)

27th March 2024

Slackware has released security updates to address a vulnerability in emacs package. Exploitation of this vulnerability may allow an attacker to execute command to an affected system.

Users and Administrators are encouraged to review Slackware Security Advisory and apply necessary updates.

SQL Injection in Bamboo Data Center and Server (CVE-2024-1597)

21st March 2024

Advisory No: TZCERT/SA/2024/03/21-02

Date of First Release: 21^st March 2024

Source: Atlassian

Software Affected: Bamboo Data Center and Bamboo Server

Overview:

Atlassian has released security patches to address a critical vulnerability affecting Bamboo Data Center and Bamboo Server. The vulnerability could allow an attacker to compromise confidentiality, integrity and availability.

Description:

Bamboo Data Center and Server are affected with a critical vulnerability tracked as CVE-2024-1597. This vulnerability is the result of a flaw in pgjdbc, the PostgreSQL JDBC Driver which could allow attacker to inject SQL if using PreferQueryMode=SIMPLE. By constructing a matching string payload, the attacker can inject SQL to alter the query, bypassing the protections that parameterized queries bring against SQL Injection attacks.

Impact:

Successful exploitation of this vulnerability may allow the attacker to take control of the affected system.

Solution:

Atlassian has released patches for this vulnerability. Users and administrators are encouraged to apply necessary updates.

References:

https://jira.atlassian.com/browse/BAM-25716