European Data Protection Authorities Focus on Transparency Obligations

European data protection authorities, coordinated by the EDPB, will focus on transparency and information obligations under GDPR for the year 2026. This initiative aims to ensure data controllers provide clear, accessible information to individuals regarding the processing of their personal data.

Microsoft Product Vulnerability CVE-2026-3731

CERT-FR has issued an advisory regarding a vulnerability (CVE-2026-3731) discovered in Microsoft products, specifically affecting azl3 libssh versions prior to 0.10.6-6. The advisory directs users to Microsoft's security bulletin for patch information.

Multiple Vulnerabilities in Traefik Software

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in Traefik software, affecting versions prior to v2.11.41, v3.6.11, and v3.7.0-ea.2. These vulnerabilities could lead to data confidentiality breaches and security policy bypasses. Users are advised to consult the publisher's security bulletins for patch information.

Oracle Identity Manager and Web Services Manager Vulnerability

CERT-FR has issued a security advisory regarding a critical vulnerability in Oracle Identity Manager and Web Services Manager. The vulnerability, identified as CVE-2026-21992, allows for remote arbitrary code execution. Affected versions require immediate patching.

Ubuntu Linux Kernel Vulnerabilities Identified by CERT-FR

CERT-FR has issued a notice regarding multiple vulnerabilities discovered in the Linux kernel used by Ubuntu. These vulnerabilities could allow attackers to gain elevated privileges, compromise data confidentiality, and impact data integrity. Users are advised to consult Ubuntu's security bulletins for patch information.

Red Hat Linux Kernel Vulnerabilities

CERT-FR has issued a notice regarding multiple vulnerabilities discovered in the Red Hat Linux kernel. These vulnerabilities could allow attackers to achieve arbitrary code execution, privilege escalation, and data confidentiality breaches. Affected systems require patching as detailed in Red Hat's security bulletin.

SUSE Linux Kernel Vulnerabilities Identified by CERT-FR

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in SUSE Linux kernel versions. These vulnerabilities could lead to data confidentiality breaches and denial-of-service attacks. Affected systems include various SUSE Linux Enterprise and openSUSE Leap installations.

Debian LTS Linux Kernel Vulnerabilities Affecting Confidentiality, Denial of Service, Privilege Escalation

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in the Linux kernel used in Debian LTS systems. These vulnerabilities could lead to data confidentiality breaches, denial of service, and privilege escalation. Users are advised to consult Debian's security bulletins for patch information.

IBM Products Vulnerabilities

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in various IBM products, including Cloud Pak for Security, Informix Dynamic Server, and QRadar SIEM. These vulnerabilities could allow attackers to execute arbitrary code remotely, cause denial of service, or compromise data confidentiality.

VMware Products Vulnerabilities Advisory

CERT-FR has issued an advisory regarding multiple vulnerabilities discovered in various VMware products. These vulnerabilities could allow an attacker to cause unspecified security issues. Affected users are advised to consult VMware's security bulletins for patch information.