USN-1379-1: Linux kernel vulnerabilities

28 February 2012

Several security issues were fixed in the kernel.

Releases

Packages

Details

Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernel's
handling of IPv4 icmp packets. A remote user could exploit this to cause a
denial of service. (CVE-2011-1927)

A flaw was found in the Linux Ethernet bridge's handling of IGMP (Internet
Group Management Protocol) packets. An unprivileged local user could
exploit this flaw to crash the system. (CVE-2011-0716)

A flaw was discovered in the Linux kernel's AppArmor security interface
when invalid information was written to it. An unprivileged local user
could use this to cause a denial of service on the system. (CVE-2011-3619)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 10.10

After a standard system update you need to reboot your computer to make
all the necessary changes.

Related notices

  • USN-1193-1: linux-image-2.6.38-11-omap, linux, linux-image-2.6.38-11-generic, linux-image-2.6.38-11-virtual, linux-image-2.6.38-11-powerpc64-smp, linux-image-2.6.38-11-powerpc-smp, linux-image-2.6.38-11-powerpc, linux-image-2.6.38-11-versatile, linux-image-2.6.38-11-generic-pae, linux-image-2.6.38-11-server
  • USN-1167-1: linux, linux-image-2.6.38-10-generic-pae, linux-image-2.6.38-10-virtual, linux-image-2.6.38-10-generic, linux-image-2.6.38-10-omap, linux-image-2.6.38-10-powerpc-smp, linux-image-2.6.38-10-powerpc, linux-image-2.6.38-10-powerpc64-smp, linux-image-2.6.38-10-versatile, linux-image-2.6.38-10-server
  • USN-1256-1: linux-lts-backport-natty, linux-image-2.6.38-12-generic, linux-image-2.6.38-12-virtual, linux-image-2.6.38-12-server, linux-image-2.6.38-12-generic-pae
  • USN-1383-1: linux-ti-omap4, linux-image-2.6.38-1209-omap4
  • USN-1387-1: linux-lts-backport-maverick, linux-image-2.6.35-32-virtual, linux-image-2.6.35-32-generic, linux-image-2.6.35-32-server, linux-image-2.6.35-32-generic-pae
  • USN-1394-1: linux-image-2.6.35-903-omap4, linux-ti-omap4