Here are the latest advisories specifically for Ubuntu Linux:

• USN-7409-1: RubySAML vulnerabilities
  It was discovered that ruby-saml did not correctly handle XML parsing. An attacker could possibly use this issue to perform a signature wrapping attack and bypass authentication. (CVE-2025-25291 and CVE-2025-25292) It was discovered that ruby-saml did not correctly handle decompressing SAML responses. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-25293)
• USN-7408-2: Linux kernel (FIPS) vulnerabilities
  Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Network namespace; - Networking core; (CVE-2024-56658, CVE-2024-35864, CVE-2024-26928)
• USN-7408-1: Linux kernel vulnerabilities
  Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Network namespace; - Networking core; (CVE-2024-56658, CVE-2024-35864, CVE-2024-26928)
• USN-7406-3: Linux kernel (Real-time) vulnerabilities
  Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Network namespace; - Networking core; (CVE-2024-26928, CVE-2024-56658, CVE-2024-35864, CVE-2024-57798)
• USN-7406-2: Linux kernel (FIPS) vulnerabilities
  Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Network namespace; - Networking core; (CVE-2024-26928, CVE-2024-56658, CVE-2024-35864, CVE-2024-57798)
• USN-7406-1: Linux kernel vulnerabilities
  Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Network namespace; - Networking core; (CVE-2024-26928, CVE-2024-56658, CVE-2024-35864, CVE-2024-57798)
• USN-7407-1: Linux kernel (HWE) vulnerabilities
  Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - SuperH RISC architecture; - User-Mode Linux (UML); - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACPI drivers; - Drivers core; - RAM backed block device driver; - Virtio block driver; - Data acquisition framework and drivers; - Hardware crypto device drivers; - DMA engine subsystem; - EDAC drivers; - ARM SCPI message protocol; - GPIO subsystem; - GPU drivers; - HID subsystem; - Microsoft Hyper-V drivers; - I3C subsystem; - IIO ADC drivers; - IIO subsystem; - InfiniBand drivers; - IOMMU subsystem; - LED subsystem; - Multiple devices driver; - Media drivers; - Multifunction device drivers; - MMC subsystem; - MTD block device drivers; - Network drivers; - Mellanox network drivers; - Microsoft Azure Network Adapter (MANA) driver; - NVME drivers; - PCI subsystem; - Pin controllers subsystem; - x86 platform drivers; - Power supply drivers; - Real Time Clock drivers; - SCSI subsystem; - SuperH / SH-Mobile drivers; - i.MX SoC drivers; - QCOM SoC drivers; - SPI subsystem; - Media staging drivers; - UFS subsystem; - DesignWare USB3 driver; - USB Gadget drivers; - USB Serial drivers; - USB Type-C Port Controller Manager driver; - VFIO drivers; - Framebuffer layer; - Xen hypervisor drivers; - AFS file system; - BTRFS file system; - Ceph distributed file system; - File systems infrastructure; - F2FS file system; - GFS2 file system; - JFFS2 file system; - JFS file system; - Network file system (NFS) client; - Network file system (NFS) server daemon; - NILFS2 file system; - NTFS3 file system; - Overlay file system; - Proc file system; - Diskquota system; - SMB network file system; - UBI file system; - Timer subsystem; - VLANs driver; - LAPB network protocol; - Network namespace; - Kernel init infrastructure; - BPF subsystem; - Kernel CPU control infrastructure; - DMA mapping infrastructure; - KCSAN framework; - Tracing infrastructure; - Memory management; - 9P file system network protocol; - Bluetooth subsystem; - CAN network layer; - Networking core; - DCCP (Datagram Congestion Control Protocol); - Distributed Switch Architecture; - HSR network protocol; - IEEE802154.4 network protocol; - IPv4 networking; - IPv6 networking; - IEEE 802.15.4 subsystem; - Multipath TCP; - Netfilter; - Netlink; - NET/ROM layer; - Packet sockets; - Network traffic control; - SCTP protocol; - SMC sockets; - Sun RPC protocol; - TIPC protocol; - VMware vSockets driver; - eXpress Data Path; - SELinux security module; - ALSA framework; - USB sound devices; (CVE-2024-50242, CVE-2024-53165, CVE-2024-56569, CVE-2024-57938, CVE-2024-57889, CVE-2024-53226, CVE-2024-57882, CVE-2024-57913, CVE-2024-53096, CVE-2024-56575, CVE-2024-56630, CVE-2024-50055, CVE-2024-53129, CVE-2025-21646, CVE-2024-50121, CVE-2024-56594, CVE-2024-57802, CVE-2024-53183, CVE-2024-57904, CVE-2025-21653, CVE-2024-56633, CVE-2024-56595, CVE-2024-56659, CVE-2024-47730, CVE-2024-57948, CVE-2024-56614, CVE-2024-56601, CVE-2024-36476, CVE-2024-49998, CVE-2024-53122, CVE-2024-56701, CVE-2024-56781, CVE-2024-56785, CVE-2024-47707, CVE-2025-21694, CVE-2024-56715, CVE-2024-56693, CVE-2024-56587, CVE-2024-56726, CVE-2024-56688, CVE-2024-53124, CVE-2024-46871, CVE-2025-21648, CVE-2024-56603, CVE-2024-56779, CVE-2025-21637, CVE-2025-21664, CVE-2024-57951, CVE-2024-53136, CVE-2025-21687, CVE-2024-57798, CVE-2024-53680, CVE-2024-56606, CVE-2024-56643, CVE-2024-56634, CVE-2024-56716, CVE-2024-57908, CVE-2024-56774, CVE-2024-56562, CVE-2025-21669, CVE-2024-57849, CVE-2024-56623, CVE-2024-56691, CVE-2024-53155, CVE-2024-49996, CVE-2024-56615, CVE-2024-47143, CVE-2024-56616, CVE-2024-56589, CVE-2024-56532, CVE-2024-53181, CVE-2024-53112, CVE-2024-53130, CVE-2024-56640, CVE-2024-57791, CVE-2024-56574, CVE-2024-57792, CVE-2024-56690, CVE-2024-57940, CVE-2024-53157, CVE-2024-48881, CVE-2024-57925, CVE-2025-21638, CVE-2024-57897, CVE-2024-56586, CVE-2024-56570, CVE-2024-56694, CVE-2024-56637, CVE-2024-53142, CVE-2024-57906, CVE-2024-49925, CVE-2024-56787, CVE-2024-56605, CVE-2024-57841, CVE-2024-53215, CVE-2024-57917, CVE-2024-43900, CVE-2024-50304, CVE-2024-56780, CVE-2024-56644, CVE-2024-56597, CVE-2025-21640, CVE-2024-56756, CVE-2024-53239, CVE-2024-57912, CVE-2024-56567, CVE-2024-55881, CVE-2024-53237, CVE-2024-56593, CVE-2024-53184, CVE-2024-56708, CVE-2024-57911, CVE-2024-56746, CVE-2024-53197, CVE-2024-57807, CVE-2024-57903, CVE-2024-56369, CVE-2024-56739, CVE-2024-56600, CVE-2024-57838, CVE-2024-53120, CVE-2024-57929, CVE-2024-56754, CVE-2024-56679, CVE-2024-56745, CVE-2024-57890, CVE-2025-21697, CVE-2024-57931, CVE-2024-53172, CVE-2024-53227, CVE-2024-56548, CVE-2024-53206, CVE-2024-56650, CVE-2024-56769, CVE-2024-57902, CVE-2025-21666, CVE-2024-56705, CVE-2025-21680, CVE-2025-21689, CVE-2024-57907, CVE-2024-56670, CVE-2024-56728, CVE-2024-53146, CVE-2024-55916, CVE-2024-53685, CVE-2024-56578, CVE-2024-57896, CVE-2024-49950, CVE-2024-56763, CVE-2024-44938, CVE-2025-21678, CVE-2024-57874, CVE-2024-47408, CVE-2024-56636, CVE-2024-56723, CVE-2024-56776, CVE-2024-56681, CVE-2024-56610, CVE-2024-56581, CVE-2024-56539, CVE-2024-56720, CVE-2024-53135, CVE-2025-21639, CVE-2024-53158, CVE-2024-53214, CVE-2024-46784, CVE-2024-53194, CVE-2024-57939, CVE-2024-56747, CVE-2024-53161, CVE-2024-57850, CVE-2024-56602, CVE-2025-21692, CVE-2024-56626, CVE-2024-53113, CVE-2024-56770, CVE-2024-53121, CVE-2024-56598, CVE-2024-57900, CVE-2022-49034, CVE-2024-53198, CVE-2024-53171, CVE-2024-56619, CVE-2024-56631, CVE-2024-56558, CVE-2024-53138, CVE-2024-53151, CVE-2024-56622, CVE-2024-56704, CVE-2024-53173, CVE-2024-56662, CVE-2024-53131, CVE-2025-21683, CVE-2024-53125, CVE-2025-21631, CVE-2024-56625, CVE-2025-21699, CVE-2024-53140, CVE-2024-57910, CVE-2024-56724, CVE-2024-56777, CVE-2024-56596, CVE-2024-56648, CVE-2024-53145, CVE-2024-50051, CVE-2024-58087, CVE-2024-57884, CVE-2024-57946, CVE-2025-21636, CVE-2024-35864, CVE-2024-57892, CVE-2024-56572, CVE-2024-56778, CVE-2024-53156, CVE-2024-56531, CVE-2024-56629, CVE-2024-56698, CVE-2024-43098, CVE-2024-56700, CVE-2024-56533, CVE-2025-21665, CVE-2024-56658, CVE-2025-21690, CVE-2024-53150, CVE-2024-52332, CVE-2024-53180, CVE-2024-53119, CVE-2024-53217, CVE-2024-49974, CVE-2024-57922, CVE-2024-26928, CVE-2024-56568, CVE-2024-53174, CVE-2024-56767, CVE-2024-56590, CVE-2024-56642, CVE-2024-56748, CVE-2024-56645, CVE-2024-46841, CVE-2024-46809, CVE-2024-42315, CVE-2024-56678, CVE-2024-36899, CVE-2024-56759, CVE-2024-50275, CVE-2024-49571, CVE-2024-53148, CVE-2024-56576, CVE-2024-53099, CVE-2024-56627, CVE-2024-53690, CVE-2024-50283, CVE-2024-53127, CVE-2024-45828, CVE-2024-57901)
• USN-7405-1: InspIRCd vulnerabilities
  It was discovered that InspIRCd did not correctly handle certificate fingerprints, which could lead to spoofing. A remote attacker could possibly use this issue to bypass authentication. This issue only affected Ubuntu 16.04 LTS. (CVE-2016-7142) It was discovered that InspIRCd did not correctly handle certain memory operations, which could lead to a NULL pointer dereference. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2019-20917) It was discovered that InspIRCd did not correctly handle certain memory operations, which could lead to a use-after-free. A remote attacker could possibly use this issue to cause a denial of service. (CVE-2020-25269)
• USN-7404-1: phpseclib vulnerabilities
  It was discovered that phpseclib did not correctly handle RSA PKCS#1 v1.5 signature verification. An attacker could possibly use this issue to bypass authentication. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-30130) It was discovered that phpseclib did not correctly handle certain characters in certain TLS fields, which could lead to name confusion. An attacker could possibly use this issue to bypass authentication. (CVE-2023-52892) It was discovered that phpseclib incorrectly limited the size of prime numbers generated by isPrime. An attacker could possibly use this issue to cause a denial of service. (CVE-2024-27354) It was discovered that phpseclib did not correctly handle processing the ASN.1 object identifier of a certificate. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2024-27355)
• USN-7403-1: Linux kernel (HWE) vulnerabilities
  Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. (CVE-2024-8805) Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2025-0927) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACPI drivers; - Drivers core; - ATA over ethernet (AOE) driver; - Network block device driver; - Ublk userspace block driver; - Compressed RAM block device driver; - TPM device driver; - CPU frequency scaling framework; - Hardware crypto device drivers; - DAX dirext access to differentiated memory framework; - ARM SCMI message protocol; - EFI core; - GPU drivers; - HID subsystem; - I2C subsystem; - I3C subsystem; - IIO subsystem; - InfiniBand drivers; - Input Device core drivers; - IOMMU subsystem; - IRQ chip drivers; - Mailbox framework; - Media drivers; - Ethernet bonding driver; - Network drivers; - Mellanox network drivers; - STMicroelectronics network drivers; - NTB driver; - Virtio pmem driver; - Parport drivers; - PCI subsystem; - Alibaba DDR Sub-System Driveway PMU driver; - Pin controllers subsystem; - x86 platform drivers; - Powercap sysfs driver; - Remote Processor subsystem; - SCSI subsystem; - SuperH / SH-Mobile drivers; - Direct Digital Synthesis drivers; - Thermal drivers; - TTY drivers; - UFS subsystem; - USB Device Class drivers; - USB Gadget drivers; - USB Host Controller drivers; - TI TPS6598x USB Power Delivery controller driver; - vDPA drivers; - Virtio Host (VHOST) subsystem; - Framebuffer layer; - AFS file system; - BTRFS file system; - File systems infrastructure; - Ceph distributed file system; - Ext4 file system; - F2FS file system; - JFS file system; - Network file systems library; - Network file system (NFS) client; - Network file system (NFS) server daemon; - NILFS2 file system; - NTFS3 file system; - SMB network file system; - BPF subsystem; - Network file system (NFS) superblock; - Virtio network driver; - Network namespace; - Network traffic control; - Network sockets; - TCP network protocol; - User-space API (UAPI); - io_uring subsystem; - Perf events; - Kernel thread helper (kthread); - Padata parallel execution mechanism; - RCU subsystem; - Arbitrary resource management; - Static call mechanism; - Timer subsystem; - Tracing infrastructure; - Maple Tree data structure library; - Memory management; - Bluetooth subsystem; - Ethernet bridge; - CAN network layer; - Networking core; - Distributed Switch Architecture; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - IEEE 802.15.4 subsystem; - Multipath TCP; - NCSI (Network Controller Sideband Interface) driver; - Netfilter; - Netlink; - RxRPC session sockets; - SCTP protocol; - TIPC protocol; - Unix domain sockets; - Wireless networking; - eXpress Data Path; - AudioScience HPI driver; - KVM core; (CVE-2024-49950, CVE-2024-49955, CVE-2024-50077, CVE-2024-57798, CVE-2024-47671, CVE-2024-49987, CVE-2024-50078, CVE-2024-49985, CVE-2024-49981, CVE-2024-49852, CVE-2024-49882, CVE-2024-49925, CVE-2024-50047, CVE-2024-47752, CVE-2024-49851, CVE-2024-50229, CVE-2024-47675, CVE-2024-50017, CVE-2024-47726, CVE-2024-50008, CVE-2024-49889, CVE-2024-50059, CVE-2024-53144, CVE-2024-49959, CVE-2024-49886, CVE-2024-50035, CVE-2024-50036, CVE-2024-47713, CVE-2024-47720, CVE-2024-47756, CVE-2024-49974, CVE-2024-49864, CVE-2024-47688, CVE-2024-47735, CVE-2024-50060, CVE-2024-50182, CVE-2024-49894, CVE-2024-50002, CVE-2024-47748, CVE-2024-49949, CVE-2024-47757, CVE-2024-47678, CVE-2024-47737, CVE-2024-49880, CVE-2024-50093, CVE-2024-49914, CVE-2024-50048, CVE-2024-56658, CVE-2024-50058, CVE-2024-49995, CVE-2024-50096, CVE-2024-49877, CVE-2024-47715, CVE-2024-50007, CVE-2024-56614, CVE-2024-49948, CVE-2024-49935, CVE-2024-50009, CVE-2024-50200, CVE-2024-50070, CVE-2024-49856, CVE-2024-50005, CVE-2024-49865, CVE-2024-50085, CVE-2024-49892, CVE-2024-53063, CVE-2024-47695, CVE-2024-49991, CVE-2024-47687, CVE-2024-53140, CVE-2024-50179, CVE-2024-47682, CVE-2024-50080, CVE-2024-50056, CVE-2024-47690, CVE-2024-49939, CVE-2024-56663, CVE-2024-49913, CVE-2024-47745, CVE-2024-47739, CVE-2024-49920, CVE-2024-47704, CVE-2024-50068, CVE-2024-49876, CVE-2024-49992, CVE-2024-49980, CVE-2024-49907, CVE-2024-50019, CVE-2024-47747, CVE-2024-50022, CVE-2024-49946, CVE-2024-56595, CVE-2024-49875, CVE-2024-49968, CVE-2024-47706, CVE-2024-56672, CVE-2024-47744, CVE-2024-49866, CVE-2024-47677, CVE-2024-49999, CVE-2024-47684, CVE-2024-49952, CVE-2024-47702, CVE-2024-50084, CVE-2024-49884, CVE-2024-53165, CVE-2024-49997, CVE-2024-50082, CVE-2024-47705, CVE-2024-49958, CVE-2024-50031, CVE-2024-49927, CVE-2024-50171, CVE-2024-50193, CVE-2024-49965, CVE-2024-49919, CVE-2024-49915, CVE-2024-47712, CVE-2024-47692, CVE-2024-47686, CVE-2024-47727, CVE-2024-50000, CVE-2024-50006, CVE-2024-47714, CVE-2024-49878, CVE-2024-49911, CVE-2024-49936, CVE-2024-50028, CVE-2024-50046, CVE-2024-49975, CVE-2024-47709, CVE-2024-47718, CVE-2024-50192, CVE-2024-49928, CVE-2024-50030, CVE-2024-49874, CVE-2024-49903, CVE-2024-47711, CVE-2024-50069, CVE-2024-49923, CVE-2024-47723, CVE-2024-50233, CVE-2024-50088, CVE-2024-49859, CVE-2024-49973, CVE-2024-47685, CVE-2024-47679, CVE-2024-49890, CVE-2024-53104, CVE-2024-47670, CVE-2024-47730, CVE-2024-49861, CVE-2024-50086, CVE-2025-0927, CVE-2024-49893, CVE-2024-56582, CVE-2024-47719, CVE-2024-49982, CVE-2024-47691, CVE-2024-50087, CVE-2024-50185, CVE-2024-50045, CVE-2024-50064, CVE-2024-47689, CVE-2024-50020, CVE-2024-47672, CVE-2024-49966, CVE-2024-50038, CVE-2024-49897, CVE-2024-49969, CVE-2024-50180, CVE-2024-49901, CVE-2024-47751, CVE-2024-49850, CVE-2024-49951, CVE-2024-49905, CVE-2024-49953, CVE-2024-50001, CVE-2024-50062, CVE-2024-49994, CVE-2024-47734, CVE-2024-50175, CVE-2024-50195, CVE-2024-50049, CVE-2024-47753, CVE-2024-50074, CVE-2024-50202, CVE-2024-47728, CVE-2024-49902, CVE-2024-50187, CVE-2024-49954, CVE-2024-50024, CVE-2024-49929, CVE-2024-53170, CVE-2024-49855, CVE-2024-50134, CVE-2024-50039, CVE-2024-47754, CVE-2024-47743, CVE-2024-50198, CVE-2024-47698, CVE-2024-49989, CVE-2024-50191, CVE-2024-50063, CVE-2024-49879, CVE-2024-49983, CVE-2024-50016, CVE-2024-47696, CVE-2024-50099, CVE-2024-50025, CVE-2024-47731, CVE-2024-49853, CVE-2024-47697, CVE-2024-56598, CVE-2024-50196, CVE-2024-49977, CVE-2024-49896, CVE-2024-50090, CVE-2024-49881, CVE-2024-50055, CVE-2024-50029, CVE-2024-49978, CVE-2024-49917, CVE-2024-49868, CVE-2024-50201, CVE-2024-47707, CVE-2024-50188, CVE-2024-49870, CVE-2024-49960, CVE-2024-50026, CVE-2024-50014, CVE-2024-50072, CVE-2024-49900, CVE-2024-49895, CVE-2024-47732, CVE-2024-50044, CVE-2024-47703, CVE-2024-47700, CVE-2024-49986, CVE-2024-49858, CVE-2024-49944, CVE-2024-49912, CVE-2024-50015, CVE-2024-50075, CVE-2024-47673, CVE-2024-49926, CVE-2024-49933, CVE-2024-50095, CVE-2024-50027, CVE-2024-49957, CVE-2024-49996, CVE-2024-49862, CVE-2024-49891, CVE-2024-49863, CVE-2024-49871, CVE-2024-50061, CVE-2024-53156, CVE-2024-47716, CVE-2024-50184, CVE-2024-49918, CVE-2024-50013, CVE-2024-50073, CVE-2024-50042, CVE-2024-50199, CVE-2024-49922, CVE-2024-50098, CVE-2024-50148, CVE-2024-49921, CVE-2024-50176, CVE-2024-50194, CVE-2024-49961, CVE-2024-49931, CVE-2024-50101, CVE-2024-50021, CVE-2024-47701, CVE-2024-50033, CVE-2024-47740, CVE-2024-50041, CVE-2024-49947, CVE-2024-49972, CVE-2024-47750, CVE-2024-49934, CVE-2024-49924, CVE-2024-49860, CVE-2024-50012, CVE-2024-47681, CVE-2024-49930, CVE-2024-49883, CVE-2024-47710, CVE-2024-50186, CVE-2024-49976, CVE-2024-47738, CVE-2024-47742, CVE-2024-50197, CVE-2024-50302, CVE-2024-49938, CVE-2024-49888, CVE-2024-47693, CVE-2024-49937, CVE-2024-41016, CVE-2024-49945, CVE-2024-50023, CVE-2024-47749, CVE-2024-50057, CVE-2024-49962, CVE-2024-49998, CVE-2024-50076, CVE-2024-50083, CVE-2024-49909, CVE-2024-47733, CVE-2024-50117, CVE-2024-47741, CVE-2024-50040, CVE-2024-50066, CVE-2024-49942, CVE-2024-50065, CVE-2024-49898, CVE-2024-49867, CVE-2024-49988, CVE-2024-50183, CVE-2024-47699, CVE-2024-49885, CVE-2024-50189, CVE-2024-49963)
• More...