Canonical Plugs OMAP4 Kernel Vulnerability in Ubuntu 11.10

Canonical announced that a couple of vulnerabilities had been found in the Linux kernel packages, this time affecting the OMAP4 kernel of the Ubuntu 11.10 (Oneiric Ocelot) operating system.

The CVE-2012-2669, CVE-2012-4508, and CVE-2012-5532 Linux kernel vulnerabilities affected Ubuntu 11.10 (Oneiric Ocelot) OMAP4.

According to Canonical, Several security issues were fixed in the kernel. It was discovered that hypervkvpd, which is distributed in the Linux kernel, was not correctly validating the origin on Netlink messages.

An untrusted local user can cause a denial of service of Linux guests in Hyper-V virtualization environments. A complete description of the vulnerabilities can be found in the Ubuntu Security Notice.

The security flaws can be fixed if you upgrade your system to the linux-image-3.0.0-1221-omap4 package. Don't forget to reboot your computer after the upgrade!

ATTENTION: Due to an unavoidable ABI change, the kernel packages have a new version number, which will force you to reinstall and recompile all third-party kernel modules you might have installed. Moreover, if you use the linux-restricted-modules package, you have to update it as well to get modules that work with the new Linux kernel version.