Canonical announced that a few vulnerabilities had been found in the Linux kernel packages, this time affecting the OMAP4 kernel of the Ubuntu 12.10 operating system.
The CVE-2013-0190, CVE-2013-0216, CVE-2013-0217, CVE-2013-0231, CVE-2013-0268, CVE-2013-0290, CVE-2013-0311, CVE-2013-0313, and CVE-2013-0349 Linux kernel vulnerabilities, affected Ubuntu 12.10 OMAP4.
According to Canonical, Andrew Cooper of Citrix reported a Xen stack corruption in the Linux kernel. An unprivileged user in a 32bit PVOPS guest can cause the guest kernel to crash or operate erroneously.
A complete description of the vulnerabilities can be found in the Ubuntu Security Notice.
The security flaws can be fixed if you upgrade your system to the linux-image-3.5.0-221-omap4 package. Don't forget to reboot your computer after the upgrade!
ATTENTION: Due to an unavoidable ABI change, the kernel packages have a new version number, which will force you to reinstall and recompile all third-party kernel modules you might have installed. Moreover, if you use the linux-restricted-modules package, you have to update it as well to get modules that work with the new Linux kernel version.